Following security remediations or credential rotations, rotating the Global Client Information secret for an Auth0 tenant aligns the environment with an updated security posture. Administrators rotate the global client secret using either the Auth0 dashboard or the Auth0 Management API.

• Auth0

• Global Client Information

• Tenant Settings

How do administrators rotate the global client secret using the Auth0 dashboard?

To rotate the global client secret via the Auth0 dashboard, navigate to the tenant settings to copy the global client ID, access an application, modify the URL, and initiate the rotation.

1. Choose Tenant Settings, select Advanced, choose Global Client Information, and copy the value of the global client ID.
2. Select an application from the Auth0 dashboard.
3. Replace the client ID portion of the URL with the global client ID.
4. Select Rotate secret at the bottom of the page.

How do administrators rotate the global client secret using the Auth0 Management API?

To rotate the global client secret via the Auth0 Management API, utilize a bearer token with the specific rotation endpoint.

1. Use the Auth0 Management API bearer token with the Rotate a client secret endpoint.