> ## Documentation Index
> Fetch the complete documentation index at: https://docs.domino.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Select Domino endpoint authorization mode

Domino offers authorization options to support various Domino endpoint applications.

## Authorize your Domino endpoint in unrestricted or restricted mode:

1. Go to the Domino endpoint’s **Settings** page and click **Invocation**.

2. Select one of the following:

   * **Unrestricted**: If your Domino endpoint is unrestricted, anyone with network access to Domino can call your Domino endpoint. No access token is required when sending a request.

   * **Restricted**: If your Domino endpoint is restricted, callers must send a valid access token with their requests to use the endpoint. See the code examples in the overview tab to see how to send access tokens with your requests.

     <Note>
       There is a difference in how to invoke synchronous and asynchronous restricted Domino endpoints:

       * Synchronous Domino endpoints require the caller to use HTTP basic authentication with the username and password both set to the value of the access token.

         For example, if the token is `c2b2532ed234f54`, then the Domino endpoint must be invoked with the HTTP username `c2b2532ed234f54` and password `c2b2532ed234f54`.

       * Asynchronous Domino endpoints require the caller to use HTTP bearer (or token) authentication with the value of the access token.

         For example, if the token is `c2b2532ed234f54`, then the Domino endpoint must be invoked with the HTTP header `Authorization: Bearer c2b2532ed234f54`.
     </Note>

3. Click **Add Model Access Token** to generate access tokens for your Domino endpoint. You can generate as many access tokens as you want. Use the name field to help you track which tokens have been issued, to whom, and for what purpose.

   To revoke or regenerate a token, click the gear button.
