While SAML provides access to the JFrog Platform UI, it is also possible for SAML users to generate a identity token, or an API key that can be used instead of a password for basic authentication or in a dedicated REST API header. JFrog recommends using a identity token rather than an API key. This can be useful when working with different clients, e.g. Docker, npm, Maven, etc. or using REST API.
In order to allow SAML users access to an API key you will need to make sure that the Auto Create Artifactory Users
and Allow Created Users Access To Profile Page
check boxes are checked. This means that SAML users are also saved in the Platform database and can access their User Profile in order to generate, retrieve and revoke their API key.