I currently use the Rest API's to access jobs and other information on Jenkins.  However, I would like to use Active Directory to secure the Jenkins box.  The only way to access the API with AD turned on is through an API token, but the only way I can find to generate this is either through the website or with the API if I already have a token.  

I can retrieve the OAuth2 credentials including the Access Token, but this does not appear to work with the API.  Is there a way to allow this Access Token to generate an API key for the user?