- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
12-15-2016 05:19 PM
Hi,
I would like to revoke a xml api key for a specific user who is configured on radius server .
Changing the password on the radius server doesnt revoke the old api key of the user.
Firewall is still athenticating the user using old api key.
Is there anyway of revoking api key of a specific user on palo alto firewall ?
Note : this specific user is an admin user with the help of api he is able to authenticate and get access of the firewall.
12-19-2016 11:35 AM
API keys are encrypted version of login+password , so they cannot be revoked , you need to change the password.
I could be wrong but after cache dies ( a few minutes/hours ) then the api key should not work anymore
12-20-2016 12:27 AM
12-23-2016 04:37 AM
this is really weird , I would open a TAC case
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!