Managing API Tokens | LogicMonitor

About us

Get to know LogicMonitor and our team.

Get to know us

Services

Resources

Explore our blogs, guides, case studies, eBooks, and more actionable insights to enhance your IT monitoring and observability.

Learn

Documentation

Read through our documentation, check out our latest release notes, or submit a ticket to our world-class customer service team.

Support

Platform
- Platform
  
  Get real-time insights and automation for comprehensive, seamless monitoring with agentless architecture.
  
  Platform Overview
- Infrastructure Monitoring
- Network monitoring
- Server monitoring
- Remote monitoring
- Virutal machine monitoring
- SD-WAN monitoring
- Database monitoring
- Storage monitoring
- Configuration monitoring
- Cloud Monitoring
- Container monitoring
- AWS Monitoring
- GCP Monitoring
- Azure Monitoring
- Digital experience
- SaaS monitoring
- Website monitoring
- APM
- AIOPS
- Edwin AI
- Integrations
- Security
- Dashboards
- Platform demo
- Logs
Solutions
- Solutions
  
  Whether you work in MSP, Enterprise IT or somewhere in between, the solution is clear.
  
  Solutions overview
- By Initiative
- Digital transformation
- Cloud migration
- Tool consolidation
- Reduce MTTR
- Cost Optimization
- Automation
- Operational efficiency
- Modernization
- By Industry
- Financial services
- Health and life sciences
- Manufacturing
- Retail
- Education
- State and local
- Software companies
- MSP
Pricing
Customers
Resources
- Resources
  
  Explore our blogs, guides, case studies, eBooks, and more actionable insights to enhance your IT monitoring and observability.
  
  View Resources
- Learn
- Blog
- Case studies
- Events
- LM Academy
- Product News
- Elevate Summit
Company
- About us
  
  Get to know LogicMonitor and our team.
  
  About us
- Get to know us
- Leadership
- Awards
- Press
- Careers
- Contact & locations
- Connect
- Blog
- Case studies
- Events
- LM Academy
- Product News
- Elevate Summit
- Services
- Professional services
- Partners
- Customer success
- LM community
Documentation
- Documentation
  
  Read through our documentation, check out our latest release notes, or submit a ticket to our world-class customer service team.
  
  View Resources
- Support
- Documentation
- Developer docs
- Support tickets
- Release notes

TRY IT FREE

ON DEMAND DEMO

Product Documentation

Disabling: We recommend that you configure your Security settings to automatically disable tokens that have no recent activity within the past 365 days. To configure this, see Disabled Unused Tokens. To perform this action manually, see Disabling API Tokens.

Deleting: We recommend that you delete tokens no longer used. To perform this action manually, see Disabling API Tokens.

Rotating: We recommend proactively rotating API tokens at least yearly (every 365 days). For high-level steps on how to do so, see the below:

Generate a new API token. This token will be used for authenticating API requests made on behalf of this user.
Update any existing systems or scripts that use the previous API token with the newly generated API token. This ensures that future API requests are authenticated using the new token.
Once you have confirmed that the new API token is being used successfully and there are no issues with the transition, disable the previous API token to prevent any unauthorized access.
After sufficient time has passed and you have confirmed the previous API token is no longer in use, delete the token from the system to remove any potential security risks associated with its existence.

To determine API token activity, the following can be used:

Examining information in the Last Used and Last IP columns under Settings > Users and Roles > LMv1 API Tokens | Bearer Tokens

For related event details, see Audit Logs.