# Get an account access consent Follow the steps below to create an account access consent: ## 1. Get the access token First, in the collections, under **Accounts**, open the **Get Access Token** request and click **Send**. If your environment was [set up](/docs/guides/build-banking-apps/tutorials/test-with-postman/set-up-postman) properly, there is no need to change any parameter. The request returns a JSON containing an access token, which is automatically saved to the `access_token` environment variable. There's no need to copy the value; it will automatically be used in the following requests. ![Postman request - Get Access Token](/img/build-banking-apps/tutorials/test-with-postman/postman-ob-get-aisp-access-token.png) ## 2. Create a consent 1. Open the **Create account access consent** request. ![Postman request - Create account access consent](/img/build-banking-apps/tutorials/test-with-postman/postman-ob-create-aisp-consent.png) 2. The request body already contains some default values which can be updated if required. Here you can define what [permissions](/docs/api/open-banking#create-an-account-access-consent) you want for this particular consent. 3. Click **Send**. 4. Open the Postman console. ![Postman console - Redirect link](/img/build-banking-apps/tutorials/test-with-postman/postman-ob-console.png) 5. On success, the redirect URL is automatically generated and printed in the console. Copy the URL and enter it in a browser window. 6. Enter the Sandbox test account credentials and authorise the consent. 7. Once completed, you are redirected to the URL which you defined in your Sandbox application. Copy the value from the `code` parameter from this URL. You will need it in the next step. ## 3. Get an authorisation access token 1. Open the **Get Authorization Access Token** request in Postman. 2. Paste the `code` parameter which was retrieved from the previous redirect URL and click **Send**. ![Postman request - Get Authorization Access Token](/img/build-banking-apps/tutorials/test-with-postman/postman-ob-get-aisp-accounts-access-token.png) 3. In the response, you get a JSON with an `access_token` parameter. This has automatically been saved to the `accounts_access_token` environment variable for later use. ## 4. Retrieve account information Open the **Retrieve all accounts** request and click **Send**. As a result, you see the account information of the specified accounts to which you have been granted access during the authorisation flow. Now you can use the obtained permissions to call the remaining **Accounts** endpoints.