There’s a lot of confusion about exactly what login/password (or clientID/clientSecret) is to be used for obtaining an OAuth2 access token for PayPal REST API calls.

PayPal uses simple HTTP Basic authentication (protected by a TLS connection) to obtain an access token.   Using the Chilkat Rest library, your application would provide the credentials in this way (in pseudo-code)

rest.SetAuthBasic("CLIENT_ID", "API_SECRET");

So… where exactly does one get the CLIENT_ID and CLIENT_SECRET???

Go to

Click on the “Profile” link for one of your Sandbox accounts.  Then go to the “API Credentials” tab.  You’ll see the following.
(Note: You should have first defined/created a REST app within your PayPal account.  You’ll see it here.  In my case, the name of my REST App is “Chilkat”.  Yours will be whatever you named it.)

Next, click on your REST App.  You’ll see this:

The Client ID and API Secret are the values that should be passed to rest.SetAuthBasic.