Manage Advanced WildFire Cloud API Tokens
Table of Contents
Manage Advanced WildFire Cloud API Tokens
Administrators have full control over the lifecycle of their Advanced WildFire cloud
API tokens within the Tenant Service Group (TSG-ID) associated with their
organization. A critical component of this management is the ability to securely
revoke API tokens that are compromised, no longer needed, or scheduled for
decommissioning.
When an administrator submits a revocation request, the system immediately cuts off
access for both programmatic service-account tokens and the user token associated
with that specific key. Upon initiating a revoke action, or when managing service
account bindings, the key's status in the interface will temporarily display as
Pending. This indicates that the revocation is actively
propagating from the authoritative IT microservice to the regional enforcement
caches. Once the system synchronization is complete—which typically takes seconds to
minutes—the key's status will permanently transition to
Revoked.
Even after an API token is revoked, it remains visible in the administrator's key
registry for historical and auditing purposes, marked with its updated
Revoked status.
- You can access the dedicated Advanced WildFire Settings by selecting .Manage your Advanced WildFire API keys. You can revoke an existing API token or view the status of current or previously generated API tokens.
- Revoke WildFire API Token
![]()
- Select More actions next to the API Key.
- Choose Revoke API Access.
- The Status for the selected API key should change to Revoked.
Apply Change to save the configuration.
