CloudGuard WAF
Search
K

Rotate profile authentication token

Importance of periodic token rotation and impact

As explained in the documentation for deploying agents, security best practices dictate that authentication tokens should be rotated periodically.
The existing token will be invalidated but existing agents that were already registered are not affected.
Once rotated, in order to allow deployments of additional agents, you must replace all deployment scripts/configuration files/key vault entries that contain the now-invalid token.

How to invalidate existing token and create a new one

When browsing to Policy->Profiles and editing any profile, its authentication token, used for authentication new deployments, can be found under Authentication section:
Clicking on the icon will invalidate the current token and create a new one that can be copied.
Clicking on the
icon will invalidate the current token and create a new one that can be copied.