diff --git a/docs/programs/api-tokens.md b/docs/programs/api-tokens.md
new file mode 100644
index 00000000000..ad19081a270
--- /dev/null
+++ b/docs/programs/api-tokens.md
@@ -0,0 +1,34 @@
+---
+title: "API Tokens"
+path: "/programs/api-tokens.html"
+id: "programs/api-tokens"
+---
+
+Your program’s administrative users can generate and manage API tokens to experiment with or use the HackerOne API. The API token identifier and value are used as the username and password for HTTP Basic authentication.
+
+To generate an API token:
+1. Go to Settings > Program > Automation > API.
+
+
+2. Click Create API Token.
+
+
+3. Enter an identifier for the new API token.
+
+
+4. Store the generated API token.
+5. Click I have stored the API Token.
+
+
+You’ll get a confirmation email stating that you’ve created a new API token. You can manage the groups that have access to the API tokens and revoke the token as well.
+
+To learn more about the HackerOne API check out our [API docs](https://api.hackerone.com/docs/v1).
+
+### Managing Groups
+To manage which groups have access to the API tokens:
+1. Click Manage groups on the API settings page for the identifier you want to manage groups for.
+
+
+2. Select which groups you want to give permissions to. When a group isn’t selected, they only have read-only permissions.
+3. Click Apply changes.
+
diff --git a/src/pages/programs/programs-nav.yaml b/src/pages/programs/programs-nav.yaml
index 1f6216db215..39b652aca43 100644
--- a/src/pages/programs/programs-nav.yaml
+++ b/src/pages/programs/programs-nav.yaml
@@ -127,6 +127,8 @@
path: /programs/supported-integrations.html
- title: Embedded Submission Form
path: /programs/embedded-submissions-form.html
+ - title: API Tokens
+ path: /programs/api-tokens.html
- title: Assembla
path: /programs/assembla-integration.html
- title: Bugzilla