When using the API we are creating an application that has to validate the user that is doing the AD sync we are using. Only way for us to track that currently is to have them manually go generate a token and plug it into the application. If the API could retrieve the value of a token of any application we could see if they have one generated. If not we could generate one for them and store it in VersionOne and then not have to worry about them manually entering it and missing characters by accident or hitting ok before retrieving the token itself. Would just be a lot easier to make API calls on this matter than to depend on the user.