Okta API tokens have a strict 30-day expiration limit that administrators cannot change. However, Okta resets the expiration timer each time a token is used, effectively preventing active tokens from expiring.

• Okta Identity Engine (OIE)
• Okta Classic Engine
• Application Programming Interface (API) Tokens

How can an Okta Administrator reset the Okta API token expiration timer?

Okta API tokens expire after 30 days, and administrators cannot change this expiration. However, Okta resets the token's expiration timer each time an application or program uses it, ensuring the token remains available. Once Okta marks a token as expired, it becomes invalid and no longer appears when navigating to Security > API > API Tokens in the Okta Admin Console. Administrators cannot activate expired tokens. Administrators must replace expired API tokens with new ones for any applications or programs that require them.

Related References

• Manage Okta API tokens
• How to Create an API Token