Managing client secrets for a service account
Each Access Management service account requires a client ID and client secret for authenticating any application using the account. You can have up to two client secrets for every service account, which can be used as a primary and secondary authentication or for client secret rollover purposes.
Procedure
- From the slide-out navigation, select Access Management.
- Go to the Service accounts tab, which shows a list of all available service accounts.
- Open the account you want to manage.
- You can do the following different things with client secrets:
Option Description Add a new secret - In the Client secrets section, select Add client secret. Access Management generates a new client secret.
- Use the copy button to copy the secret to your clipboard, and then paste and save the secret a secure location. You cannot copy a secret that has been previously generated and saved.
- If needed, modify the expiration date of the secret.
The default and maximum expiration is one year. You can change it to be shorter than that, but no longer.
- Select Save.
Modify the expiration of a secret - Select Edit for the secret you want to delete.
- Edit the expiration date of the secret.
The default and maximum expiration is one year. You can change it to be shorter than that, but no longer.
- Select Save.
Delete an existing secret - Select Edit for the secret you want to delete.
- Select Delete and then Delete again on the confirmation.