# Quick Start Guide source: https://developer.mastercard.com/onboard-risk-check/documentation/quick-start-guide/index.md ## Overview {#overview} The Onboard Risk Check application provides a list of APIs to create inquiries so that customers can gain visibility into additional risks a merchant may bring to a customer's portfolio prior to onboarding. This tutorial guides you through the process of onboarding and being able to consume this API. Tip: **Postman Collections Quick Start:** If you are ready to start making calls you can head over to our [Postman tutorial](https://developer.mastercard.com/platform/tutorial/use-postman-for-mastercard-apis/) to leverage Sandbox and Production environments without having to write code. > > #### You can follow this guide to learn: {#you-can-follow-this-guide-to-learn} > > * How to create a project for the Onboard Risk Check service. > > * How Mastercard Developers approaches authentication. > > * How to generate your credentials and API client. > > * How to get access to Sandbox and Production. ## Accessing The API {#accessing-the-api} 1. Navigate to [Mastercard Developers](https://developer.mastercard.com/) and click sign up and create an account. 2. Activate your account by opening the link sent to your email address, and log in. 3. Request access to the ORC API if needed. APIs with a 'lock icon' require permission to view their documentation and create a project. To gain access to such services, you will need to submit an access request form. Once submitted, you will receive an email confirmation approving or denying your access. ## Generate Your Credentials {#generate-your-credentials} To generate your Sandbox and Production credentials you must create a new Mastercard Developers project. Generating Sandbox credentials will give you access to our Sandbox, which has rich, mocked data, that will help you understand the ORC API. 1. Create a project on your [My Projects](https://developer.mastercard.com/dashboard) page. 2. Name your project. 3. Indicate whether you are creating a project on behalf of a client. Note: Check "yes" if you are creating an API integration project for a customer. For example, you could be an integrator, a processor, or a service provider and the customer could be a merchant or acquirer. 4. Provide the client company name and client company address (if applicable). 5. In the **'Select your API service'** field, select **'Onboard Risk Check OAuth 1.0a'**. 6. Provide the commercial countries for the project. This field represents where your client is doing business. Note: If you are creating a project on-behalf of a client, the Commercial countries represent where your client is doing business. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_1.png) 7. Proceed to accept the 'Legal Agreements' for Onboard Risk Check service. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_2.png) 8. Proceed to create your 'Project Credentials'. By default, 'OAuth 1.0' project keys will be created. Scroll down and create a key alias and keystore password, **take note of these** . Click on Proceed. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_3.png) 9. Click on Create Project. 10. Download your OAuth keys, and **store them in a safe place** . Click on Open Project. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_4.png) 11. Once you complete this flow, you will land on the Project page. From the Project page, take note of your: 1) Sandbox and Production status ('Ready/ Not Requested'), 2) Sandbox and Production credentials: authentication consumer key. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_5.png) Warning: **Key Expiry:** Mastercard Onboard Risk Check Sandbox and Production Keys will expire after 30 days. You will have to generate a new set of keys after they expire. To do this, go to your project dashboard under API keys and select 'Add Key'. ## Integrate {#integrate} ### Generate your own API client {#generate-your-own-api-client} 1. Navigate to the ORC API documentation page. 2. Download the Onboard Risk Check API specification (OpenAPI or Swagger) [onboard-risk-check-api.yaml](https://static.developer.mastercard.com/content/onboard-risk-check/swagger/onboard-risk-check-api.yaml) (63KB). 3. Generate and configure an API client for this API. Please follow our ORC [Tutorials](https://developer.mastercard.com/onboard-risk-check/documentation/tutorials/onboard-risk-check/). ### Testing the service {#testing-the-service} You can test our service using three different methods: 1. Using Postman: If you are using Postman, please follow our [Postman Tutorial](https://developer.mastercard.com/platform/tutorial/use-postman-for-mastercard-apis/). 2. Using Insomnia: If you are using Insomnia, please follow our [Insomnia Tutorial](https://developer.mastercard.com/platform/tutorial/use-insomnia-rest-client-for-mastercard-apis/). Note: For a detailed step-by-step guide, see [Generating and Configuring a Mastercard API Client](https://developer.mastercard.com/platform/documentation/security-and-authentication/generating-and-configuring-a-mastercard-api-client/). ## Go-Live {#go-live} After you have tested your implementation in our Sandbox environments, it is time to **Move to Production**. ### Steps to moving to production {#steps-to-moving-to-production} 1. Within your project, select "Request Production Access". ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_5.png) 2. Please provide the Company ID (CID) details to get the Onboard Risk Check API Production access. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_6.png) 3. Enter your Production key alias and keystore password. ![](https://static.developer.mastercard.com/content/onboard-risk-check/uploads/qsg_7.png) 4. Save your key alias and keystore password for future reference. 5. Confirm and download your Production keys. Note: Production Credentials are generated instantaneously, but they still need to be approved for Production environment access before you can go live. Once your Production access request has been reviewed, you will receive a notification confirming your access has been approved or denied. ## Next Steps {#next-steps} Now that you have access to the service, you can begin testing, proceed to the [Use Cases](https://developer.mastercard.com/onboard-risk-check/documentation/use-cases/orc/initiate-inquiry/) section to learn about the different use cases of the service.