Authentication is the act of challenging a party for legitimate credentials, providing the basis for creation of a security principal to be used for identity and access control. In simpler terms, it's the process of proving you are who you say you are. To be able to call the KS APIs you first need to authenticate and for that you need to use our Identity Provider.

SALTO KS uses an Identity Provider that implements OpenID Connect which is an industry standard and is implemented on top of OAuth 2.0. The purpose of Identity Provider is to verify the identity of an end-user using different methods, these methods depend on the type of application trying to verify the user's identity.

Your application needs to obtain a Token before it can make API calls. There are different application types and also different tokens that have different uses.