---
title: Rotating the client secret for an application
description: For security reasons, you should change an application's client secret on a regular basis. If you think the client secret might have been compromised, you should change it immediately.
component: pingone
page_id: pingone:applications:p1_rotate_client_secret
canonical_url: https://docs.pingidentity.com/pingone/applications/p1_rotate_client_secret.html
revdate: May 3, 2024
---

# Rotating the client secret for an application

For security reasons, you should change an application's client secret on a regular basis. If you think the client secret might have been compromised, you should change it immediately.

After you update a client secret in PingOne, you must ensure that all applications that use the secret are updated. You can retain the previous client secret to give application owners time to update the secret without causing sign-on errors for their users. Use the PingOne admin console or the PingOne API to change a client secret.

|   |                                                       |
| - | ----------------------------------------------------- |
|   | Client secrets apply only to OIDC-based applications. |

Learn more in:

* [Viewing the client secret for an application](p1_view_client_secret_application.html)

* [Generating a client secret for an application](p1_generate_client_secret_application.html)

* [Revoking a client secret for an application](p1_revoke_client_secret_application.html)

* To use the PingOne API to rotate a client secret, refer to [Application secret](https://developer.pingidentity.com/pingone-api/platform/applications/application-secret.html) in the PingOne Platform API Reference.