• API Token
• Token Expiration and Deactivation

Tokens expire automatically after a certain period and can be deactivated anytime.

Token expiration:

• Tokens are valid for 30 days from creation or last use, and the expiration date automatically refreshes with each API call.
• Tokens that are not used for 30 days expire.
• The 30-day period is currently fixed, and it applies to all orgs.
• NOTE: Once an API token expires, it is revoked and cannot be used again.

Token deactivation:

• If a user account is deactivated in Okta, any API token created by that user account is deprovisioned simultaneously.

The following color codes are used to show the token status.

• Green – The token has been used within the last three days.
• Gray – The token has not been used in the last three days, and today is at least seven days before its expiration date.
• Red – The token is within seven days of expiring.
• Yellow – The token is suspicious.

Related References

• Manage Okta API tokens
• How to Set the Okta API Token Not to Expire