# Overview

## User Guide: Admin Tab <a href="#user-guide-admin-tab" id="user-guide-admin-tab"></a>

### Key Management <a href="#key-management" id="key-management"></a>

To secure communication between an organization and the BlueFletch data services, BlueFletch provides options for the organization to configure and manage API and device keys.

API keys are SHA-256 hashed token values of randomly-generated strings used to verify the identity of an organization communicating with the BlueFletch backend system. API keys can be managed in the BlueFletch Portal.

Device keys, also encrypted tokens, validate requests from BlueFletch applications making data service API calls. Device keys can be managed in the BlueFletch Portal.

An organization can choose to manage its keys actively in the Portal or passively through its legacy API key. By default, active key management is disabled, and an organization administrator can copy the *Legacy API Key* value statically listed in the settings on the ***Admin - Organization*** page into its API [headers](/bluefletch-enterprise/product-guides/device-applications/messaging/technical-guide.md#rest-api) and/or [bfChat](/bluefletch-enterprise/product-guides/chat/technical-guide.md#bfchat) configuration. Access your organization page on the BlueFletch Portal here to enter the **Manage Organization** settings.

By enabling *Use Key Management* within the ***Organization*** settings, an organization administrator with the [Key Management role](/bluefletch-enterprise/product-guides/portal/admin/roles/predefined-roles.md) can generate and revoke [API keys](/bluefletch-enterprise/product-guides/portal/admin/key-management/api-keys.md) and [device keys](/bluefletch-enterprise/product-guides/portal/admin/key-management/device-keys.md), and has the capability to configure key expiration, key rotation, and token expiration timeframes in the [organization settings](/bluefletch-enterprise/product-guides/portal/admin/organization.md#key-management-options).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.bluefletch.com/bluefletch-enterprise/product-guides/portal/admin/key-management/overview.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.