The Offline Mediation Controller REST API uses OAuth 2.0 access tokens to authenticate requests from clients.

Before you can send requests to REST API services, you must acquire a valid OAuth access token. Then, your clients must pass the token in the header of every request sent to an Offline Mediation Controller REST API service.

You can use either Oracle Identity Cloud Service or Oracle Access Management to set up authentication for your client requests. For more information, see "Offline Mediation Controller REST Services Manager Security" in Offline Mediation Controller Cloud Native Installation and Administration Guide.