Encrypt access tokens for authorization servers

Early Access release. See Enable self-service features.

Encrypt access tokens to ensure that the information in the token is protected from unauthorized access. For information about encrypting access tokens using the API, see Manage keys.

1. In the Admin Console, go to Security > API.

2. Open an authorization server for editing.

3. Click the Settings tab.

4. In the Encryption keys section, click Edit.

5. Select either Save keys to Okta or Use a URL to fetch keys dynamically.

6. If you selected Save keys to Okta, click Add key. The Add a public key window appears.

   1. Click Generate new encryption key to generate a new key pair. Or, paste your own public key.

   2. Click Done. Your public key appears in the Encryption keys section.

7. If you selected Use a URL to fetch keys dynamically, enter the URL into the URL field.

8. From the Access Token Encryption dropdown, select an encryption algorithm.

9. Click Save.