Managing client secrets for a service account

Each Access Management service account requires a client ID and client secret for authenticating any application using the account. You can have up to two client secrets for every service account, which can be used as a primary and secondary authentication or for client secret rollover purposes.

Procedure

  1. From the slide-out navigation, select Access Management.
  2. Go to the Service accounts tab, which shows a list of all available service accounts.
  3. Open the account you want to manage.
  4. You can do the following different things with client secrets:
    OptionDescription
    Add a new secret
    1. In the Client secrets section, select Add client secret. Access Management generates a new client secret.
    2. Use the copy button to copy the secret to your clipboard, and then paste and save the secret a secure location. You cannot copy a secret that has been previously generated and saved.
    3. If needed, modify the expiration date of the secret.

      The default and maximum expiration is one year. You can change it to be shorter than that, but no longer.

    4. Select Save.
    Modify the expiration of a secret
    1. Select Edit for the secret you want to delete.
    2. Edit the expiration date of the secret.

      The default and maximum expiration is one year. You can change it to be shorter than that, but no longer.

    3. Select Save.
    Delete an existing secret
    1. Select Edit for the secret you want to delete.
    2. Select Delete and then Delete again on the confirmation.