---
title: Identity domain auth tokens should be rotated every 90 days or less
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: >-
  Docs > Datadog Security > OOTB Rules > Identity domain auth tokens should be
  rotated every 90 days or less
---

# Identity domain auth tokens should be rotated every 90 days or less
 
## Description{% #description %}

Oracle Cloud identity domain auth tokens should be rotated at least every 90 days to reduce the risk of unauthorized access from compromised credentials. Regular rotation of auth tokens is a security best practice that limits the window of opportunity for attackers to exploit compromised credentials.

**Note**: Identity domain users that are in an inactive state are not assessed.

## Remediation{% #remediation %}

Rotate auth tokens that are older than 90 days by creating new auth tokens and deleting the old ones. For guidance on managing auth tokens, refer to the [Working with Auth Tokens](https://docs.oracle.com/iaas/Content/Identity/access/working-with-auth-tokens.htm) section in the Oracle Cloud Infrastructure Documentation.