BitMart Exchange Setup
Connect your BitMart account to SignalBee in minutes. This guide walks you through creating and configuring API keys with the exact permissions needed for automated trading.
Important: BitMart requires three values for API authentication: API Key, Secret Key, AND Memo. You create the Memo yourself during API key setup—save all three immediately.
Prerequisites
Before you begin, make sure you have:
- Verified BitMart account - Identity verification (KYC) completed
- 2FA enabled on BitMart - Required for API key creation
- SignalBee account - Ready to connect an exchange
- Password manager - For storing your THREE API credentials securely
Security Note: BitMart requires 2FA (two-factor authentication) to create API keys. If you haven't enabled 2FA yet, go to Security Settings → Google Authenticator in your BitMart account.
Understanding BitMart's Memo System
BitMart uses a three-value authentication system for API access, similar to KuCoin, OKX, and Bitget.
What Are the Three Credentials?
| Credential | What It Is | Can View Later? |
|---|---|---|
| API Key | Public identifier for your key | ✅ Yes - visible in API Management |
| Secret Key | Private key for signing requests | ❌ No - shown only once |
| Memo | Password you create for this key | ❌ No - you set it yourself |
All three values are required for SignalBee to connect to your BitMart account.
Why a Memo?
The Memo adds an extra layer of security. Even if someone obtains your API Key and Secret Key, they still need your Memo to make API requests. Think of it as a password specifically for this API key.
Note: BitMart calls this a "Memo" while other exchanges like KuCoin and OKX call it a "Passphrase"—they serve the same purpose.
Warning: If you forget your Memo or lose your Secret Key, you must delete the API key and create a new one. There is no way to recover these values.
Creating Your API Key
Follow these steps to create an API key on BitMart.
Step 1: Log In to BitMart
- Go to www.bitmart.com
- Log in with your email/phone and password
- Complete 2FA verification
Step 2: Navigate to API Management
- Click your profile icon in the top-right corner
- Select Account from the dropdown menu
- Click API Management in the sidebar
- You'll see a list of your existing API keys (if any)
Step 3: Create a New API Key
- Click the Create API button
- You may need to complete 2FA verification again
Step 4: Enter API Label
- API Label - Enter a descriptive name:
SignalBee Trading
Step 5: Create Your Memo
- Memo - Create a strong memo (8-32 characters, letters and numbers)
- Save this memo immediately - You'll need it for SignalBee
Tip: Use a unique memo that you haven't used elsewhere. Treat it like a password—store it in your password manager immediately before proceeding.
Step 6: Set Permissions
Configure the permissions for your API key (see Configuring Permissions section for details):
- ✅ Enable Read - View account info
- ✅ Enable Trade - Place orders
- ❌ Do NOT enable Withdraw - Never needed
Step 7: Complete Security Verification
- Authenticator Code - Enter the 6-digit 2FA code
- Email Verification - Click the link sent to your email (if required)
- Wait for verification to complete
Step 8: Save ALL THREE Values IMMEDIATELY
After verification, BitMart displays your API credentials. You MUST save all three:
| Value | Can View Later? | Action Required |
|---|---|---|
| API Key | ✅ Yes | Copy and save |
| Secret Key | ❌ NO - Never shown again | Copy immediately! |
| Memo | ❌ NO - You created this | Already saved it, right? |
Warning: The Secret Key is displayed only once. If you close the page without copying it, you'll need to delete this API key and create a new one.
Save all three values in your password manager now before proceeding.
Configuring Permissions
Configure the correct permissions to balance functionality and security.
Required Permissions
| Permission | Enable? | Why |
|---|---|---|
| Read | ✅ Yes | Allows SignalBee to check your balances and account info |
| Trade | ✅ Yes | Allows SignalBee to place and manage spot orders |
Never Enable These Permissions
| Permission | Enable? | Why |
|---|---|---|
| Withdraw | ❌ NEVER | SignalBee never needs withdrawal access. Enabling this is a serious security risk. |
Security Note: Even if your API key is somehow compromised, funds cannot be withdrawn without withdrawal permissions enabled. This is your most important security protection.
How to Edit Permissions
- In API Management, find your SignalBee API key
- Click the Edit button next to the key
- Modify the permission checkboxes as needed
- Click Confirm
- Complete 2FA verification
IP Whitelist Configuration
IP whitelisting restricts your API key to only work from specific IP addresses. This is optional but adds a strong security layer.
Why Use IP Whitelisting?
| Scenario | Without Whitelist | With Whitelist |
|---|---|---|
| SignalBee places trade | ✅ Works | ✅ Works |
| Attacker tries stolen key | ⚠️ Could work | ❌ Blocked |
Even if your API key is somehow exposed, it won't work from unauthorized IP addresses.
SignalBee Server IP Addresses
Note: Contact support@signalbee.trade to request SignalBee's current production IP addresses for whitelisting. We maintain static IPs specifically for exchange API calls and will notify you before any infrastructure changes.
How to Configure IP Whitelisting
- When creating or editing your API key, find the IP Addresses section
- Enter each SignalBee IP address (one per line)
- Click Confirm
- Complete verification
If You Skip IP Whitelisting
If you choose not to use IP whitelisting:
- Leave the IP address field empty
- Understand this is less secure but still safe if withdrawals are disabled
- Your other security measures (no withdrawal permission) still protect your funds
Adding to SignalBee
Now connect your BitMart API key to SignalBee.
Step 1: Go to Exchanges Page
- Log in to your SignalBee account
- Navigate to Exchanges in the main menu
Step 2: Add New Exchange
- Click the Add Exchange button
- Select BitMart from the exchange list
Step 3: Enter Your Credentials
BitMart requires three fields - this is similar to KuCoin, OKX, and Bitget:
- API Key - Paste your BitMart API key
- Secret Key - Paste your BitMart Secret key
- Memo - Enter the memo you created when making the API key
Tip: The Memo is the one YOU created during API key setup. Make sure you're entering it exactly as you set it—it's case-sensitive.
Step 4: Test the Connection
- Click Save and Test Connection
- Wait for SignalBee to verify your credentials
- Look for the ✅ success message
Step 5: Verify Your Setup
After successful connection:
- Your BitMart balances should appear in SignalBee
- Check that your expected assets are listed
- Balances confirm the Read permission is working
BitMart-Specific Considerations
Ticker Format
BitMart uses an underscore format for trading pair symbols:
| SignalBee Format | BitMart Format | ⚠️ Not This |
|---|---|---|
| BTC/USDT | BTC_USDT | |
| ETH/USDT | ETH_USDT | |
| SOL/USDT | SOL_USDT |
SignalBee automatically handles format conversion—when configuring webhooks, you can use standard formats like BTC-USDT and SignalBee will convert to BitMart's BTC_USDT format.
Supported Order Types
BitMart spot trading supports limited order types:
| Order Type | Supported? | Notes |
|---|---|---|
| Market | ✅ Yes | Buy/sell at current market price |
| Limit | ✅ Yes | Buy/sell at specified price |
| Stop | ❌ No | Not available on BitMart spot |
Note: If your signal includes stop orders, they won't execute on BitMart. Consider using market or limit orders instead.
Minimum Order Sizes
BitMart enforces minimum order values:
| Typical Minimum | Notes |
|---|---|
| ~$5 USD equivalent | Varies by trading pair |
| Check specific pair | Some pairs have different minimums |
Tip: Check BitMart's trading rules for current minimum order sizes for specific pairs.
Trading Fees
BitMart has higher standard fees compared to some exchanges:
| Fee Type | Standard Rate |
|---|---|
| Maker | 0.25% |
| Taker | 0.25% |
Tip: Hold BMX (BitMart's native token) in your account to get fee discounts. VIP levels based on trading volume also reduce fees.
No Testnet Available
BitMart does not offer a testnet (sandbox) environment for API testing. All API keys work on the live trading platform.
Tip: When first connecting, start with small orders to verify everything is working correctly before scaling up.
API Rate Limits
- BitMart imposes rate limits per endpoint
- SignalBee handles rate limiting automatically
- If you see rate limit errors, reduce your signal frequency or check for duplicate webhooks
Troubleshooting
Common BitMart-specific errors and solutions:
| Error | Code | Likely Cause | Solution |
|---|---|---|---|
| "Invalid API Key" | 30001 | Typo when copying, or key was deleted | Re-copy the API key carefully. Check for extra spaces. Verify key exists in BitMart. |
| "Invalid Signature" | 30002 | Incorrect Secret Key or Memo | Re-check both Secret Key AND Memo. Most signature errors are wrong Memo. |
| "Invalid Timestamp" | 30003 | System time drift | Ensure your system clock is synchronized. Usually resolves automatically. |
| "IP Not Whitelisted" | 30004 | IP restrictions configured | Add SignalBee's IP addresses to your whitelist, or remove IP restrictions. |
| "Permission Denied" | 30005 | Missing required permissions | Enable Read and Trade permissions in BitMart API settings. |
| "Invalid Symbol" | 40001 | Wrong ticker format | Use underscore format: BTC_USDT, not BTCUSDT or BTC-USDT. |
| "Insufficient Balance" | 40004 | Not enough funds available | Check that sufficient funds are in your BitMart spot account. |
| "Order Too Small" | 40005/40009 | Order below minimum | Increase order quantity to meet BitMart minimums (~$5). |
| "Rate Limit Exceeded" | 50000 | Too many API requests | Wait a moment and retry. Check for duplicate webhooks. |
Connection Test Fails?
If your connection test fails in SignalBee:
- Verify all THREE values - API Key, Secret Key, AND Memo must all be correct
- Check the Memo - Most common error. Must match exactly what you set (case-sensitive)
- Wait a few minutes - New API keys may take 1-2 minutes to activate
- Verify permissions - Ensure Read permission is enabled
- Check IP whitelist - If you configured IP restrictions, ensure SignalBee's IPs are included
For persistent issues, see our Error Codes Reference or contact support@signalbee.trade.
Security Best Practices
Follow this checklist to keep your BitMart account secure:
BitMart Account Security
- Enable 2FA with an authenticator app (Google Authenticator, Authy) - more secure than SMS
- Use a unique, strong login password for BitMart (not reused from other sites)
- Enable anti-phishing code on BitMart - helps identify legitimate emails
API Key Security
- Create a dedicated API key just for SignalBee - don't reuse keys across services
- Use a strong, unique Memo - treat it like a password
- Never enable withdrawal permission - SignalBee never needs it
- Consider IP whitelisting for maximum security
- Never share your Secret Key via email, chat, or screenshots
- Never share your Memo - it's as sensitive as your Secret Key
- Store all THREE credentials in a password manager (1Password, Bitwarden, etc.)
Ongoing Security
- Review your API keys periodically in BitMart - delete any you don't recognize
- Rotate API keys every 90 days as a security habit
- Monitor trade history on BitMart for any unauthorized activity
- Keep your email secure - it's used for BitMart account recovery
Security Note: Even with all these precautions, the most important protection is never enabling withdrawal permissions. Without this permission, your funds cannot be moved off the exchange even if everything else is compromised.
Related Resources
- API Key Best Practices - General API key security guidance
- Security Overview - How SignalBee protects your data
- Error Codes Reference - Common error messages explained
- KuCoin Setup - Similar three-value authentication system
- OKX Setup - Another exchange with passphrase requirement
- Bitget Setup - Another exchange with passphrase requirement