--- title: OAuth authorization server description: PingFederate can act as an OAuth authorization server (AS), allowing a resource owner to grant authorization to a client requesting access to resources protected by a resource server (RS). component: pingfederate version: 13.1 page_id: pingfederate:introduction_to_pingfederate:pf_oauth_auth_server canonical_url: https://docs.pingidentity.com/pingfederate/13.1/introduction_to_pingfederate/pf_oauth_auth_server.html llms_txt: https://docs.pingidentity.com/pingfederate/llms.txt docs_for_agents: https://developer.pingidentity.com/build-with-ai/docs-for-agents.md revdate: July 5, 2022 --- # OAuth authorization server PingFederate can act as an OAuth authorization server (AS), allowing a resource owner to grant authorization to a client requesting access to resources protected by a resource server (RS). The OAuth AS issues tokens to clients on behalf of a resource for use in authenticating a subsequent API call—typically, but not exclusively a REST API. The PingFederate OAuth AS issues tokens to clients in several different scenarios, including: * A web application wants access to a protected resource associated with a user and needs the user's consent. * A native application client on a mobile device or tablet wants to connect to a user's online account and needs the user's consent. * An enterprise application client wants to access a protected resource hosted by a business partner, customer, or software as a service (SaaS) provider. For information about OAuth and the role of an AS, see [OAuth 2.0 and PingFederate AS](pf_oauth20_pf_as.html). You can configure the PingFederate OAuth AS independently or in conjunction with security token service (STS) and browser-based single sign-on (SSO) for either an identity provider (IdP) or a service provider (SP) deployment. For more information, see [About OAuth](pf_about_oauth.html). | | | | - | ---------------------------------------------------------------------------------------------------------------- | | | OAuth AS capabilities might require additional licenses. For more information, contact . |