For all APIs, standard user accounts can be used. However, to avoid exposing a user's
personal password, a generic account should be created, e.g. ReportingAPI. This generic
account can be found within the User search and follows the same rules as standard
accounts, such as password reset requirements. When the password is changed, be sure
to update all API queries with the new password. Alternatively, a service account
can be used, which avoids the need to reset the password periodically. Be sure to
align your account strategy with your company's account security requirements.
AcceleratorKMS endpoints use the OAuth 2.0 authorization protocol. This protocol allows external applications to access AcceleratorKMS on behalf of a user. Accessing APIs requires an AcceleratorKMS username and password to obtain the necessary access token; SSO credentials will not work.