Skip to main content
Before setting up API keys for sandbox or production, review:
  • API permission groups
  • Wealth manager master API key
  • Shared API key (for Anchorage Digital)
  • Request signing
  • Sandbox testing considerations

API permission group

Configure permissions before generating an API key.
1

Generate an API key

Generate an API access key in the Anchorage Digital Web Dashboard under the API 2.0 section. Save the key securely as keys are not recoverable.
2

Create permission group

Scroll to API permission groups and select ‘Create a new group’
3

Name the group and enable the following permissions

PermissionEnable?Notes
Initiate withdrawalNoNot required — withdrawals occur from vaults/wallets, not ledgered accounts.
Read subaccountsYesRead all balances and transactions on the wealth management ledger.
Write subaccountsYesCreate transactions on the wealth management ledger.
Execute tradesYesTrade from ledger balances. If not visible, the user is not an enabled trader.
Read tradesYesRead all trades and trade settlements. Select All Trades on the org. If not visible, contact your account representative to enable trade permissions.
OnboardingYesEnables API-based client onboarding.
Read deposit attributionYesAccess past and current deposit attributions.
Configure webhooksYesSet up webhook notifications.
Read vaultYesRead balances across all wallets. Select All vaults.
Create new addressYesCreate deposit wallets for account funding.
TransferNoNot needed for wealth management integration.
Propose and accept settlementsNoNot needed for wealth management integration.
Authorize settlementsNoNot needed for wealth management integration.
After submitting the permission group, endorse the operation on the iOS app to achieve quorum. Anchorage Digital will then perform a risk review before the permission group can be used to create an API key.

Master API key generation

1

Generate a unique Ed25519 public/private key pair

# https://pypi.org/project/PyNaCl/

import nacl
import nacl.signing
import secrets

seed = secrets.token_bytes(32)

signing_key = nacl.signing.SigningKey(seed)

print('Signing key:')
print(signing_key.encode().hex())

print('Public key:')
print(signing_key.verify_key.encode().hex())
2

Create the API key

Select the permission group created above, and use the public key from step 1 to create your API key.
Copy the API key immediately as it will not be displayed again. If lost, revoke the key and generate a new one.
For read-only keys issued to third-party vendors (e.g., data aggregation, reconciliation), provision with read-only permissions only. Read-only keys do not require an Ed25519 key pair — use the “I don’t want to provision a signing key” toggle when creating the key.

Create the shared API key for Anchorage Digital

The shared API key allows Anchorage Digital to settle trades on behalf of the wealth manager. It is provisioned by the wealth manager but owned and managed by Anchorage Digital.
1

Navigate to the Developer API 2.0 page

2

Select the 'Shared API keys' tab in the top navigation

3

Accept the terms and conditions

4

Create the permission group

The permission group is pre-configured. Select the applicable options, then quorum approve the operation. Wait for Anchorage Digital to complete its risk review before proceeding.
5

Create the shared API key

This step also requires quorum approval and an Anchorage Digital risk review. No Ed25519 key pair is required — Anchorage Digital manages this key.
6

Confirm key creation is complete

In the API 2.0 keys table, verify the key status is green and marked Unused after Anchorage Digital approval.

API testing

Read-only APIs can be tested directly in the reference docs using your sandbox API key. Production keys will not work in the sandbox environment. For write APIs, generate a request signature outside of Postman or the reference docs. API signing: see the Request Signing guide. Host URLs:
EnvironmentURL
Sandboxhttps://api.anchorage-staging.com/v2
Productionhttps://api.anchorage.com/v2

Sandbox setup

Some steps only apply to production (e.g., onboarding, trading, settlement). Note the following before beginning sandbox testing:
  • Verify you are onboarded to the sandbox iOS app and have web dashboard access. Onboarding details are sent by Anchorage Digital via email.
  • Admin users must download the iOS app for quorum approvals and API key creation.

Sandbox testnet assets

All sandbox activity uses testnet assets only.
Mainnet assetRecommended testnet asset
BitcoinBTC_S (Signet)
EthereumETHHOODI (Hoodi)
USDCUSDANCHOL (Hoodi)
SolanaSOL_TD (Devnet)