Update OAuth client

You can modify the configuration settings for your existing OAuth client. For example, you can update your client credentials (Client ID and Client secret) when they’ve been rotated or changed by your identity provider.

To update an OAuth client

Open the AgentCore Identity console.
In the Outbound Auth section, select the OAuth client you want to update.
Choose Edit.
On the Update OAuth Client page, update the information as needed. For Client secret selection method, choose one of the following options:
1. Provide Client secret – Enter the client secret value directly.
  1. For Client secret, enter the updated confidential key associated with your client ID. AgentCore Identity securely stores this value for authentication.
2. Provide Client secret via Secrets Manager – Reference a secret stored in AWS Secrets Manager instead of entering the value directly.
  1. For Secrets Manager, enter or select the ARN of the Secrets Manager secret that contains your client secret.
  2. For JSON key, enter the JSON key in your Secrets Manager secret that contains the client secret value for your OAuth client.
Choose Update OAuth Client to save your configuration settings.

The updated OAuth client configuration takes effect immediately and will be used for all subsequent authentication requests made by your agents.

Note

You cannot switch between providing a client secret directly and referencing one stored in AWS Secrets Manager. To change the client secret selection method, delete the OAuth client and create a new one.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Add OAuth client using custom provider

Delete OAuth client