The three valid methods for requesting authentication with the Juniper Mist API are:

Use an HTTPS login with a user name and password: The Mist API accepts HTTPS requests where credentials are provided directly for session/token generation and user administration.

Use OAuth2 linked to an OAuth provider: "Juniper Mist APIs offer authentication via OAuth2 with various OAuth-compatible identity providers, such as Okta, for secure and federated access."

Enable basic authentication with a token: Mist APIs accept programmatic requests using tokens (API tokens or bearer tokens) for automation, scripting, and integration—each token mapping to specific scopes and user permissions.

Enabling MFA with Okta Verify enhances user portal security but is not an API authentication mechanism. RADIUS certificates are used for infrastructure 802.1X authentication, not for API access.