Bootstrap token

Overview

Resilio Management Console uses bootstrap tokens to authenticate new Agents and authorize the connection. The token is added to the Agent's configuration file and delivered to the Agent.

When an Agent connects to the Management Console for the first time, it sends the bootstrap token from its configuration. If the token and the certificate fingerprint match, the Agent is allowed to establish connection. Management Console then generates a unique client_token for this Agent instance. The Agent stores the client_token in its settings and uses it for future connections to the Management Console.

Bootstrap Token expiration

For security reasons, the bootstrap token has an expiration date. You can adjust it in the Management Console's settings, but it's best not to set the period too long.

When the token expires, it's no longer showed in the Management Console's settings. Click Generate to create a new bootstrap token.

Note

The Agents that are already connected will not be affected as the use the client_token assigned after establishing the initial connection.

Re-generate token

You can re-generate the token if there's a suspicion that it got compromised.

Note

The Agents that are already connected will not be affected as the use the client_token assigned after establishing the initial connection.

If one of the current Agent gets its settings deleted (for example, it's reinstalled), it will receive a new configuration file containing the new bootstrap token and certificate fingerprint.