You may have noticed the Shared Key tab has been replaced with Access Tokens on the Access page. What the Access Token allows us to do is for every Evo directory to have its own encryption key tied to an Access Token. And, the access token can be time limited which allows for better security. Previously, the APIKey/Secret was for EVERY customer/directory in an environment. Now, every directory can have its own APIKey/Secret. APIKey = Secret, Secret key is the new terminology and what displays in the MSI UI.
This is only used for Elevated Logins. Once you create/update a token for a directory, all computers in that directory need to update their access token and their secret. Otherwise, they can't do elevated access. This starts with the latest Evo Credential Provider version 1.1.0.
DO NOTE: Older versions of the Evo Credential Provider with previously saved Shared Keys will still work. However, installing and overwriting the Secret Key by creating a new Access token will override this, and you will need to make the necessary changes by adding the new Access Token and Secret Key. Inputting the old Shared Key in the new Secret Key field will work.
To create Access Tokens:
- After logging into your Evo Environment, select Access from the left Navigation Menu.
- Select the Access Tokens tab.
3. Select the Create Access Token button.
4. Fill out the required information
- For Name, enter any name you'd like for the new Access Token
- for Type, select Evo Credential Provider
- For Customer, select which Customer this Token will be associated with
- For Directory, choose the directory it will be associated with
- For Expiration Date, choose a date you wish this token to expire. Once it expires, you will no longer be able to use Elevated Access as it will not work and you'll need to create a new Token.
- Once complete, click Create Access Token
5. Once complete, you will be given JSON of your newly created Access Token.
6. Click "Copy to Clipboard" and paste it in your favorite text editor.
7. Click Complete.
8. On your Evo Credential Provider, using the JSON you've copied (without the quotes), find the "Access Token" portion and copy/paste that into the "Access Token" field.
9. Repeat this for the "Secret Key" portion.
10. Congratulations! You have now created and used Access Tokens!