Managing Keys

This describes how you can manage agent access keys and API keys from the Automox console.

From the Settings > Keys tab, you can view an organization’s agent access key and all associated API keys. Depending on your privileges, you can manage API keys in varying degrees.

Viewing Keys

Select the Settings > Keys tab to view the agent access key and the API keys.

Agent Access Key

The agent access key is used to add devices to your Automox account.

  • To copy the agent access key, click the Copy button (clipboard) to the right of the field.

API Key

The API key is used to access the Automox API.

NOTE

API keys are not automatically generated for new users or new organizations. See Adding API Keys.

  • To view an API key, click the Show button to the right of the obfuscated field. The key will automatically hide again after 10 seconds.

  • To copy the API key, click the Copy button (clipboard) to the right of the field. It is automatically decrypted.

NOTE

When you use API keys, take care to keep them secure. Follow best practices such as these:

  • Do not embed API keys directly in code.

  • Do not store API keys in files inside your application’s source tree.

Managing API Keys

Your user account role determines what API key management functionality is available to your account. There are four types of user accounts.

  • Full administrators can view and manage all organizational API keys.

  • Patch administrators can only view and manage API keys created with their account.

  • Billing administrators can only view and manage API keys created with their account.

  • Read Only users can only view and manage API keys created with their account.

(See User Accounts for more information about role-based account controls.)

Full administrator privileges:

  • View all of the organization’s API keys on the Settings > Keys page of the console.

  • Disable and delete all of the organization’s API keys on the Settings > Keys page of the console.

  • Disable and delete all of the organization's API keys through the API.

All other administrator and user privileges:

  • Patch administrators, billing administrators and read-only users can view only the API keys that were created by their user login on the Settings page of the console
.

  • Patch administrators, billing administrators and read-only users can disable and delete the API keys that were created by their user login on the Settings page of the console
.

  • Patch administrators, billing administrators and read-only users can disable and delete the API keys that were created by their user login through the API.

All users:

  • Users can sort on the user column.

  • Users can only add keys for their own account.

Adding API Keys

You can add up to 10 unique API keys to a user account.

  1. From the Settings > Keys page, click Add.

  2. Enter the unique name of the API key. You will see an error message if you enter a name that already exists.

  3. (Optionally) You can select an expiration date for the API key.

  4. Click Create.

Adding an API key to an account

Disabling API Keys

You can disable API keys that are from your own account. Only full administrators can disable API keys for all users.

  1. Select the Settings > Keys tab to view the list of API keys.

  2. To find the API key that you want to disable, sort by the Name or User column. Show or hide the API key, as needed. If you don’t see the API key you want, select from the next page at the bottom.

  3. To disable the API key, turn off the toggle switch under Enabled.

Example of decrypted API key

NOTE: When an API key is disabled, the key is rejected and returns an error. It is possible to re-enable an API key.

Deleting API Keys

You can delete API keys that are from your own account. Only full administrators can delete API keys for all users.

  1. Select the Settings > Keys tab to view the list of API keys.

  2. You can sort by the Name or User column to find the API key that you want to delete. Show or hide the API key, as needed. If you don’t see the API key you want, select from the next page at the bottom.

  3. To delete the API key, click Delete in the manage column.

NOTE: When an API key is deleted, the key is rejected and returns an error.