# Create an NCentral Read-Only User and an API Key
**Step 1:**
* Log in to your NCentral administration console.
* Select **Administration** > **User Management** > **Users**.\
* Select **Create User**.
**Step 2:**
* Enter the following information:
* **First Name**: **epiphany**
* **Last Name**: **systems**
* **Login Name**: **epiphany**
* **Password**: Ensure your password follows your organization's password security policy.
**Step 3:**
* Select the **Role** tab and select **Assign Roles**.
* Check the **Default Dashboard Role** checkbox.
{% hint style="warning" %}
NCentral's API will not work with 2FA enabled during collection testing. Please do not enable 2FA for this user.
{% endhint %}
**Step 4:**
* Select the **API** **Access** tab.
* Check the **API-Only User** checkbox to enable API access for this user.
* Select **Save**.
**Step 5:**
* Select the login name of the user you just created to open the **Modify User** form.
* Select the **API Access** tab and check the **API-Only User** checkbox.
* To authenticate the API user with a web token, select **GENERATE JSON WEB TOKEN** and copy the token for login use in [*Add the NCentral Credentials to Epiphany*](https://docs.reveald.com/technical-documentation/data-sources/ncentral/add-the-ncentral-credentials-to-epiphany). For more information, see [*Generate a JSON web token*](https://documentation.n-able.com/N-central/userguide/Content/User_Management/Role%20Based%20Permissions/role_based_permissions_JSON_webtoken.htm).
* Select **OK** then select Save.
You now have a read-only user, and an API key generated for the user.
* Select **Create User**.
**Step 2:**
* Enter the following information:
* **First Name**: **epiphany**
* **Last Name**: **systems**
* **Login Name**: **epiphany**
* **Password**: Ensure your password follows your organization's password security policy.
