Protect API access with API key lifetime and the ability
to revoke API keys, in case of a compromise.
The API keys on the firewall and Panorama
enable you to authenticate API calls to the XML API and REST API.
Because these keys grant access to the firewall and Panorama that
are critical elements of your security posture, as a best practice,
specify an API key lifetime to enforce regular key rotation. After
you specify the key lifetime, when you regenerate an API key, each
key is unique.
In addition to setting a key lifetime that
prompts you to regenerate new keys periodically, you can also revoke
all currently valid API keys in the event one or more keys are compromised.
Revoking keys is a way to expire all currently valid keys.