Authenticate

Authentication

Oracle Communications Unified Assurance offers two forms of authentication:

HTTP, or basic authentication: Authenticate with a username and password sent in plain text with the request. For example, using cURL:
```
curl -X GET -u <username>:<password> 'http://<host>:<port>/api/device/devices'
```
TLS: Authenticate with certificates and key files. For example, using cURL:
```
curl -X GET --cacert $A1BASEDIR/etc/ssl/BundleCA.crt --cert $A1BASEDIR/etc/ssl/User-api.crt --key $A1BASEDIR/etc/ssl/User-api.key' http://<host>:<port>/api/device/devices'
```
The TLS certificate for the api user is generated by default when you install Unified Assurance.

To set up authentication for other users, generate a certificate using the CreateSSLCertificate application, specifying User for the --type option and the appropriate user name for the --CN option. See CreateSSLCertificate in Unified Assurance Implementation Guide for more information about generating SSL certificates.

Authorization

Unified Assurance users are assigned to user groups with associated roles. These roles are assigned permissions, which allow access to specific APIs and their methods. Oracle recommends using the default api user, but you can optionally create additional users, groups, and roles as needed.

See the following for more information:

The AAA endpoints in this guide.
Authentication Options and Adding User Accounts in Unified Assurance Security Guide
Topics under AAA in Unified Assurance User's Guide