install_token

Manages installation tokens in CrowdStrike Falcon. Installation tokens are used to authenticate sensor installations and deployments.

API Scopes

The following API scopes are required:

• Installation Tokens: READ
• Installation Tokens: WRITE
• Installation Tokens Settings: WRITE

Example Usage

terraform {
  required_providers {
    crowdstrike = {
      source = "registry.terraform.io/crowdstrike/crowdstrike"
    }
  }
}

provider "crowdstrike" {
  cloud = "us-2"
}

# Create an installation token that never expires
resource "crowdstrike_install_token" "example" {
  name = "Production Deployment Token"
}

# Create an installation token with expiration
resource "crowdstrike_install_token" "temporary" {
  name              = "Temporary QA Token"
  expires_timestamp = "2026-12-31T23:59:59Z"
}

# Revoke an installation token
resource "crowdstrike_install_token" "revoked" {
  name    = "Old Token"
  revoked = true
}

Schema

Required

• name (String) The display name for the installation token.

Optional

• expires_timestamp (String) The token’s expiration time in RFC-3339 format. If not set, the token never expires. Set to null to reset an existing token to never expire.
• revoked (Boolean) Set to true to revoke the token, false to restore it. Defaults to false.

Read-Only

• created_timestamp (String) When the token was created (RFC-3339 format).
• id (String) The unique identifier of the installation token.
• last_used_timestamp (String) When the token was last used (RFC-3339 format).
• revoked_timestamp (String) When the token was revoked (RFC-3339 format).
• status (String) The current status of the token.
• value (String, Sensitive) The actual token value. Marked as sensitive.

Import

Import is supported using the following syntax:

terraform import crowdstrike_install_token.example <token_id>