Access keys are generated by an individual user in the Sumo Logic depending on the permissions set for their account; however, administrators in the account can deactivate or delete all keys generated across the account. Access keys are associated with the user who generated them; if a user is disabled, keys associated with that user no longer work. When a user is removed from the account, their keys no longer authenticate.
Access keys are used in the following ways:
- To securely register new Collectors. When installing a Collector, use the Sumo Logic Web Application to generate unique access keys consistent with your organization's policies. You can generate one set and use those credentials on all Collectors, or generate a new set for each Collector, depending on how your group prefers to manage this process. The keys are used only for installation, so if a key is deleted after a Collector has been set up, the Collector isn't affected.
- To access the Sumo Logic APIs. Access keys can be used with the Sumo Logic Search API and Collector Management API. See API Authentication for details.
Managing access keys may also be set as a user Role Capability.
Generate Access Keys
- In the Sumo Logic Web Application click your name in the left nav and open the Preferences page (click your user name on the top menu bar and choose Preferences in the classic UI).
- Next to My Access Keys, click the + icon to Add (click Create in the classic UI).
- In the Access Key Label text box, type a name for the Access Key. Then click Generate Key.
- When the new key and ID is displayed, copy the credentials right away and paste them in a safe place. Once you dismiss this screen you won't have full access to the key/ID again.
Manage Access Keys
Keys that you generated can be found on your Preferences page. Administrators in an account can deactivate, reactivate, or delete all keys in an organization through the Administration > Security > Access Keys page (Manage > Security page, on the Sumo Logic Access Keys tab, in the classic UI).
Deactivate an Access Key
Deactivating a key keeps the key credentials in your account, but renders the key useless. You can reactivate a key at any time to begin using it again.
- Click Active in the Status column.
- The status changes to Inactive.
Reactivate an Access Key
- Click Inactive in the Status column.
- The status changes to Active.
Delete an Access Key
- Click Delete.
- Confirm the deletion. The key is immediately removed, and will no longer work.