Managed implementations of Keyfactor Command are generally configured to use OAuth identity providers and use tokens for authentication, and requiring users to enter a username and password to authenticate to the Management Portal. To use the Keyfactor API
A set of functions to allow creation of applications. Keyfactor offers the Keyfactor API, which allows third-party software to integrate with the advanced certificate enrollment and management features of Keyfactor Command., users need to acquire a token (see Authenticating to the Keyfactor API).
Keyfactor Command uses a system of security roles and claims to provide access control to the Management Portal as a whole and to the features within it and the Keyfactor API. In order to access the Management Portal or Keyfactor API, the account you are using to access Keyfactor Command must be a member of one of the groups granted access to the Management Portal during the Keyfactor Command installation and configuration process or your account must have been granted access either directly or via group membership later through the Management Portal (see Security Roles and Claims) or with the Keyfactor API (see Security Roles).