Manage Access Keys
Create Access Keys for Services
You can give users access to a specific service using access keys. You do this by creating a new role with only the service's permissions enabled and assigning it to an employee profile with no features enabled. You then generate the access key on the employee profile and share it with users you want to access the service.
Caroline Bingley, the administrator of the Netherfield, Inc. contact center, wants to generate an access key for ScreenAgent so that only users with the access key can use ScreenAgent.
-
Add a new role with custom permissions required for the service.
- Click the app selector and select Admin.
- Go to Security > Roles and Permissions.
-
Click New Role.
- Give the role a descriptive name. For the use case described previously, you might call it ScreenAgent Access Key.
-
Select only the permissions required for the service. Selecting other permissions will grant users extra administrative privileges in addition to those required to use the service.
-
Click Save & Activate.
-
Create a new employee profile for your service:
-
Click the app selector and select Admin.
-
Click Employees.
- Click New Employee.
-
Give the employee profile an email address you own so that you can activate the employee account later.
-
Give the employee profile a descriptive first and last name. For the use case described previously, you might call it ScreenAgent AccessKey.
-
In the Primary Role drop-down, assign the employee to the role you just created.
-
In the Attribute drop-down, clear all the checkboxes so you aren't charged for the account.
-
Click the Security tab. Select a Login Authenticator.
-
Click Create.
-
-
In the Employees table, click the new employee profile you created to open it.
-
Click the Security tab.
-
Under Access Keys, click Add access key.
-
Copy the Access Key ID and paste it somewhere you can save it.
-
Click (SHOW SECRET KEY).
-
Copy the Secret Access Key and paste it where you want to save it. If you ever lose the secret key, you'll need to create and share a new one.
-
Click Save.
-
In the Employees table, click Invite next to the new employee profile you created.
-
When you receive the account activation email, follow the instructions in the email to activate the account.
-
Share the access key only with users you want to use the service.
Use of Access Keys through Global Authentication/Token Endpoint
You can authenticate your users with access keys through the CXone global authentication/token endpoint. To do so, you have to register for this method in the DEVone Developer Community . CXone supports a single API endpoint to retrieve access tokens. You can discover the endpoint for access keys with OpenID Connect discovery.
Delete Access Keys with Access Key Manager
The Access Key Manager page allows you to view all the access keys in your system. It displays:
-
The Access Key ID.
-
When the key was created and last used.
-
The owner of the key.
-
Whether the key is active or inactive.
You can activate, deactivate, or delete access keys from this page.
-
Click the app selector and select Admin.
-
Go to Security Settings > Access Key Manager.
- Locate the access key you want to delete.
- Click Delete .
-
If you want to delete all of the access keys in your system, click Delete all access keys, then click Delete.
This action is irreversible and may result in loss of access to your system.