An API key—a secret phrase used like a password—provides an additional layer of security to your Red Canary account. This key should be changed periodically to maintain good security hygiene. If you suspect your key has been compromised, reset it immediately in Red Canary. This will revoke any existing key you've used before.
- From Red Canary, click your profile icon, and then click View profile.
- Scroll to Generate API Authentication Token in the Security Settings section.
- Click Generate.
Note: Red Canary API keys are not set globally. API keys are generated and linked only to the individual user profile. Your API key will work with all Red Canary subdomains that are linked to your profile. Similarly, if you reset your API key, the key is no longer valid across subdomains you are linked to.