Sam, I can't answer all your questions re: changing the length, but I do know how you can "cancel" or deactivate tokens. However, it will break ALL that were generated for that server.
It can be reversed if you decide that isn't what you want to do (as long as you keep a copy as I mention in step 2), but also reverses for ALL of the tokens. (I did this on 10.2.2 and should work on 10.3 ...but can't guarantee prior)
- Login to your ArcGIS Server Manager http://localhost:6080/arcgis/manager
- Go to Security, then edit the Token Settings. ---> I recommend keeping a copy of the Shared Key in notepad or a txt file, in case you need to reverse what you are about to do <---
- if you change the Shared Key at all, all tokens based off the original key will break (probably need to restart the service). For testing....just add or delete on character on the end...that will make it easier to restore if it doesn't work .....btw, I recommend not testing on a production machine, if you have a choice.
- If you need to reverse this, use the original (saved) Shared Key.
On a related note, I know I was working on getting tokens to work about 6 months ago, and frustrated because in the creation dialog box I would give them a long life, and they were working.....next day or so, they weren't. At least in 10.2.2, the shorter default value in the Edit Token Settings was overriding the value I was using when creating the token....and thus they were expiring before I expected. Once we realized that (I was working with tech support) things worked better.
I'll be interested if someone else can answer the rest of the questions.
