## API authentication overview

Glasswall Halo supports two authentication methods: Basic and Bearer. Before making any API requests, authenticate using the method configured for your deployment.

### Basic authentication

If your system uses Basic authentication, obtain the organisation ID and token from your system administrator. Combine these values in the format `organisation_id:token`, then base64 encode the result.

Include the encoded value in the request header as shown below.


```json
Authorization: Basic ZGVtbzpwQDU1dzByZA==
```

### Bearer authentication

For Bearer authentication, obtain a bearer token from your identity provider. Once you have the token, include it in the request header as shown below.

```json
Authorization: Bearer ZGVtbzpwQDU1dzByZA==
```
**Note**: please ensure that you use the appropriate authentication method as per your system's configuration. Using the correct authentication ensures successful access to the Glasswall Halo API and prevents any authorization issues.

* * *

#### Learn more

* [User roles](/halo/glasswall-halo-user-roles)
* [API roles to action mapping](/halo/api-roles-to-action-mapping)
* [Portal roles to action mapping](/halo/portal-roles-to-action-mapping)