Upcoming Revocation of API Keys for LIR Portal Accounts
We are contacting a number of members to inform them about the upcoming removal of API keys associated with their LIR Portal accounts.
API keys are unique identifiers that can be used to provide external applications with access to LIR data. Users of LIR accounts may use API keys in scripts or tools to connect external applications.
What’s happening?
On 6 August 2024, we will be revoking API keys associated with certain LIR Portal accounts that have been created by admins no longer associated with the accounts. While this will not impact direct access to the LIR Portal, it will deny access to any external applications or systems that use the revoked keys.
Why are we doing this?
We recently reviewed LIR Portal API keys and the keys in question were created by admins no longer associated with LIR accounts. To ensure security and proper access management, these keys need to be removed.
This work will continue in Q3 where we will then improve the external API Keys we provide to members and end users. Some of this work will require building a solution to replace MD5 Passwords in the RIPE Database.
What you need to do
We have contacted members whose LIR accounts will be affected by revoking their keys. If you are using any of the affected API keys in your systems, please regenerate them before 6 August. The current admin for the LIR account can create new API keys by visiting LIR Portal API Key Management.
Need assistance?
If you have any questions or need further assistance, please contact us at ncc@ripe.net.