API credentials are managed through the StatusDashboard administration portal.
Administrative users may enable/disable API access for their user accounts by navigating to: Users Accounts > Edit > User Permissions.
Once a user account is enabled for API access, that user account may access the API via session or API key based authentication. API keys for specific user accounts can be acquired by logging in to the StatusDashboard administrative portal and browsing to the user profile section. It is important to keep your API key secure - it carries the same level of control over your account as your username/password. If you ever feel that your API key has been compromised, you should immediately generate a new key, which will invalidate the old one.