API keys in 15Five expire after a fixed period. This article covers the expiration policy, advance notice emails, key length identifiers, access control, and how to rotate an expiring key.
Direct Answer
15Five Public API keys expire exactly 1 year from creation. After expiration, the key becomes inactive and stops working immediately.
Key Rules
- Expiration period: 1 year from the date the key was created.
- Advance notice: A notification email is sent 2 weeks before expiration, and a second email is sent on the expiration date.
- Key length — Public API: 32 characters.
- Key length — SCIM: 30 characters. Do not confuse the two; they are different key types.
- Access control: Only account admins can view or generate API keys in 15Five. Admins may share a key with another team member if needed.
- Key rotation: Create a new key before the old one expires, then replace the old key in every location where it is used. There is no grace period after expiration.
Common Misunderstanding
Seeing a 30-character key does not mean your Public API is configured. A 30-character key is a SCIM key. The Public API key is always 32 characters.