There is no other way to authenticate with the WebAPI besides using the ltoken. You will have to use kwauth
to authenticate just once for the LDAP user account you are using to access the WebAPI. This will create an 'ltoken' file for authenticating with the Klocwork server which can be used for the WebAPI requests.
I would just use one specific LDAP account, and ltoken, for all of the WebAPI requests, unless that doesn't work for your scenario. There should be no need to manually run kwauth
for every user.