For all APIs, standard user accounts can be used. However, to avoid exposing a user's personal password, a generic account should be created, e.g. ReportingAPI. This generic account can be found within the User search and follows the same rules as standard accounts, such as password reset requirements. When the password is changed, be sure to update all API queries with the new password. Alternatively, a service account can be used, which avoids the need to reset the password periodically. Be sure to align your account strategy with your company's account security requirements.
AcceleratorKMS endpoints use the OAuth 2.0 authorization protocol. This protocol allows external applications to access AcceleratorKMS on behalf of a user. Accessing APIs requires an AcceleratorKMS username and password to obtain the necessary access token; SSO credentials will not work.