Skip to main content

Re-authenticating Remote Servers

Remote servers that use OAuth for authentication may require regular rotation of your credentials. When rotation is required, an alert appears in the top left of the web interface. Use the link in that alert to re-authenticate and re-establish the connection to the remote.

The exact re-authentication period varies and can range from hours to weeks.

For example, the default Dropbox web session duration is 4 hours, and the default Box session duration is 60 days.

Some platforms allow the administrator to configure the duration for the OAuth refresh token, such as DropboxExternal LinkThis link leads to an external website and will open in a new tab. Others, such as Box, do not. Contact the remote server administrator, or refer to the remote server's documentation, for more information.

Re-authentication with SSO

Remote servers that use OAuth may be configured to use Single-Sign-On (SSO). When SSO is in use, the Identity Provider (IdP) controls the OAuth configuration that determines the session and refresh token durations.

Common Identity Providers include Okta, OneLogin, Ping Identity, Microsoft Entra ID (formerly known as Microsoft Azure Active Directory or Azure AD), Google Identity, and Auth0.

For example, when the remote server uses Okta for SSO, Okta controls the session and refresh durations.

When SSO is in use, contact the Identity Provider administrator, or refer to the Identity Provider's documentation, for more information about how to configure OAuth session and refresh durations.