API keys can allow agents to access to the IBM UrbanCode™ Deploy server. Without the correct API key, the server and an agent cannot exchange messages. The server rejects messages that purport to be from the agent if the messages are not encrypted with the key. Likewise, the agent rejects messages that purport to be from the server if the messages are not encrypted with the key. Finally, without the key, no one can read intercepted messages between the server and agent.
The server generates the API key when an agent first requests one. Then, the identity of the agent is recorded as a certificate that the agent provides, and only that identity can request that a new key be generated to replace the existing key. If a key is lost, for example if an agent is reinstalled or compromised, retrieving or generating the exact again is not supported. You must revoke the old key and generate a new one.