Rotate profile authentication token

Importance of periodic token rotation and impact

As explained in the documentation for deploying agents, security best practices dictate that authentication tokens should be rotated periodically.

The existing token will be invalidated but existing agents that were already registered are not affected.

Once rotated, in order to allow deployments of additional agents, you must replace all deployment scripts/configuration files/key vault entries that contain the now-invalid token.

How to invalidate existing token and create a new one

When browsing to Policy->Profiles and editing any profile, its authentication token, used for authentication new deployments, can be found under Authentication section:

PreviousTrack Learning and Move from Learn/Detect to Prevent NextUpgrade your Reverse Proxy when a Linux/NGINX agent is installed

Last updated 1 month ago

Was this helpful?