Track credential exposure and rotation risk across OAuth clients, keys, and tokens.
The Secrets page (admin/auditor only) surfaces credential exposure risk across OAuth clients, service-account keys, API keys, and domain-delegation grants. A risk-distribution bar and an overdue-rotation panel sit above a paginated inventory showing each secret's name, type, status, risk score, last-rotated date, and rotation cadence. A second tab manages tenant API tokens.
Open Secrets & API Tokens from the sidebar.
Read the risk-distribution bar for the critical/high/medium/low split.
Check the rotation-overdue panel to find secrets past their cadence.
Filter the inventory by status (All / Active / Inactive) and page through to review risk scores and last-rotated dates.
Switch to the API Tokens tab to create or revoke tenant tokens (see the API tokens guide).
Jump straight to the feature, or browse the rest of the guides.