diff --git a/src/frontend/src/lib/components/modals/Modals.svelte b/src/frontend/src/lib/components/modals/Modals.svelte
index 05cadab43..a95fbdf04 100644
--- a/src/frontend/src/lib/components/modals/Modals.svelte
+++ b/src/frontend/src/lib/components/modals/Modals.svelte
@@ -2,6 +2,7 @@
 	import { nonNullish } from '@dfinity/utils';
 	import AuthConfigModal from '$lib/components/modals/auth/AuthConfigModal.svelte';
 	import UserDetailsModal from '$lib/components/modals/auth/UserDetailsModal.svelte';
+	import AutomationKeysConfigModal from '$lib/components/modals/automation/AutomationKeysConfigModal.svelte';
 	import CreateAutomationModal from '$lib/components/modals/automation/CreateAutomationModal.svelte';
 	import ApplyChangeModal from '$lib/components/modals/changes/ApplyChangeModal.svelte';
 	import RejectChangeModal from '$lib/components/modals/changes/RejectChangeModal.svelte';
@@ -168,3 +169,7 @@
 {#if modal?.type === 'create_automation' && nonNullish(modal.detail)}
 	<CreateAutomationModal detail={modal.detail} onclose={close} />
 {/if}
+
+{#if modal?.type === 'edit_automation_keys_config' && nonNullish(modal.detail)}
+	<AutomationKeysConfigModal detail={modal.detail} onclose={close} />
+{/if}
diff --git a/src/frontend/src/lib/components/modals/automation/AutomationKeysConfigModal.svelte b/src/frontend/src/lib/components/modals/automation/AutomationKeysConfigModal.svelte
new file mode 100644
index 000000000..1ddbd8c06
--- /dev/null
+++ b/src/frontend/src/lib/components/modals/automation/AutomationKeysConfigModal.svelte
@@ -0,0 +1,82 @@
+<script lang="ts">
+	import AutomationKeysConfigForm from '$lib/components/satellites/automation/settings/AutomationKeysConfigForm.svelte';
+	import Modal from '$lib/components/ui/Modal.svelte';
+	import SpinnerModal from '$lib/components/ui/SpinnerModal.svelte';
+	import { authIdentity } from '$lib/derived/auth.derived';
+	import { updateAutomationKeysConfig } from '$lib/services/satellite/automation/automation.config.edit.services';
+	import { wizardBusy } from '$lib/stores/app/busy.store';
+	import { i18n } from '$lib/stores/app/i18n.store';
+	import type { AddAccessKeyScope } from '$lib/types/access-keys';
+	import type { JunoModalAutomationConfigDetail, JunoModalDetail } from '$lib/types/modal';
+
+	interface Props {
+		detail: JunoModalDetail;
+		onclose: () => void;
+	}
+
+	let { detail: d, onclose }: Props = $props();
+
+	let detail = $derived(d as JunoModalAutomationConfigDetail);
+
+	let satellite = $derived(detail.satellite);
+	let automationConfig = $derived(detail.automationConfig);
+	let providerConfig = $derived(detail.providerConfig);
+
+	let scope = $state<Omit<AddAccessKeyScope, 'admin'> | undefined>(undefined);
+	let maxTimeToLive = $state<bigint | undefined>(undefined);
+
+	let step: 'init' | 'in_progress' | 'ready' | 'error' = $state('init');
+
+	const handleSubmit = async ($event: SubmitEvent) => {
+		$event.preventDefault();
+
+		wizardBusy.start();
+		step = 'in_progress';
+
+		const { success } = await updateAutomationKeysConfig({
+			satellite,
+			identity: $authIdentity,
+			automationConfig,
+			providerConfig,
+			maxTimeToLive,
+			scope
+		});
+
+		wizardBusy.stop();
+
+		if (success !== 'ok') {
+			step = 'init';
+			return;
+		}
+
+		step = 'ready';
+	};
+</script>
+
+<Modal {onclose}>
+	{#if step === 'ready'}
+		<div class="msg">
+			<p>{$i18n.core.configuration_applied}</p>
+			<button onclick={onclose}>{$i18n.core.close}</button>
+		</div>
+	{:else if step === 'in_progress'}
+		<SpinnerModal>
+			<p>{$i18n.core.updating_configuration}</p>
+		</SpinnerModal>
+	{:else}
+		<AutomationKeysConfigForm
+			config={providerConfig}
+			onsubmit={handleSubmit}
+			bind:scope
+			bind:maxTimeToLive
+		/>
+	{/if}
+</Modal>
+
+<style lang="scss">
+	@use '../../../styles/mixins/overlay';
+
+	.msg {
+		@include overlay.message;
+	}
+</style>
diff --git a/src/frontend/src/lib/components/satellites/auth/AuthSettingsLoader.svelte b/src/frontend/src/lib/components/satellites/auth/AuthSettingsLoader.svelte
index d3cf1cd8b..12a210d18 100644
--- a/src/frontend/src/lib/components/satellites/auth/AuthSettingsLoader.svelte
+++ b/src/frontend/src/lib/components/satellites/auth/AuthSettingsLoader.svelte
@@ -4,7 +4,6 @@
 	import SpinnerParagraph from '$lib/components/ui/SpinnerParagraph.svelte';
 	import Warning from '$lib/components/ui/Warning.svelte';
 	import { authIdentity } from '$lib/derived/auth.derived';
-	import { satelliteAuthConfig } from '$lib/derived/satellite/satellite-configs.derived';
 	import { getRuleUser } from '$lib/services/satellite/collection/collection.services';
 	import { loadSatelliteConfig } from '$lib/services/satellite/satellite-config.services';
 	import { i18n } from '$lib/stores/app/i18n.store';
@@ -37,8 +36,6 @@
 		});
 	};
 
-	$inspect($satelliteAuthConfig);
-
 	const load = async () => {
 		await Promise.all([loadConfig(), loadRule()]);
 	};
diff --git a/src/frontend/src/lib/components/satellites/automation/AutomationSettings.svelte b/src/frontend/src/lib/components/satellites/automation/AutomationSettings.svelte
new file mode 100644
index 000000000..d7160439d
--- /dev/null
+++ b/src/frontend/src/lib/components/satellites/automation/AutomationSettings.svelte
@@ -0,0 +1,18 @@
+<script lang="ts">
+	import type { SatelliteDid } from '$declarations';
+	import GitHubConfigGuard from '$lib/components/satellites/automation/guards/GitHubConfigGuard.svelte';
+	import AutomationKeysSettings from '$lib/components/satellites/automation/settings/AutomationKeysSettings.svelte';
+	import type { Satellite } from '$lib/types/satellite';
+
+	interface Props {
+		satellite: Satellite;
+	}
+
+	let { satellite }: Props = $props();
+</script>
+
+<GitHubConfigGuard {satellite}>
+	{#snippet content(config: SatelliteDid.OpenIdAutomationProviderConfig)}
+		<AutomationKeysSettings {config} {satellite} />
+	{/snippet}
+</GitHubConfigGuard>
diff --git a/src/frontend/src/lib/components/satellites/automation/guards/GitHubConfigGuard.svelte b/src/frontend/src/lib/components/satellites/automation/guards/GitHubConfigGuard.svelte
new file mode 100644
index 000000000..a56c5f828
--- /dev/null
+++ b/src/frontend/src/lib/components/satellites/automation/guards/GitHubConfigGuard.svelte
@@ -0,0 +1,32 @@
+<script lang="ts">
+	import type { Snippet } from 'svelte';
+	import { fade } from 'svelte/transition';
+	import type { SatelliteDid } from '$declarations';
+	import AutomationNew from '$lib/components/satellites/automation/AutomationNew.svelte';
+	import NoAutomation from '$lib/components/satellites/automation/NoAutomation.svelte';
+	import SpinnerParagraph from '$lib/components/ui/SpinnerParagraph.svelte';
+	import { githubConfig } from '$lib/derived/satellite/github.derived';
+	import { i18n } from '$lib/stores/app/i18n.store';
+	import type { Satellite } from '$lib/types/satellite';
+
+	interface Props {
+		satellite: Satellite;
+		content: Snippet<[SatelliteDid.OpenIdAutomationProviderConfig]>;
+	}
+
+	let { content, satellite }: Props = $props();
+</script>
+
+{#if $githubConfig === undefined}
+	<SpinnerParagraph>{$i18n.core.loading_config}</SpinnerParagraph>
+{:else if $githubConfig === null}
+	<div in:fade>
+		<NoAutomation />
+
+		<AutomationNew {satellite} />
+	</div>
+{:else}
+	<div in:fade>
+		{@render content($githubConfig)}
+	</div>
+{/if}
diff --git a/src/frontend/src/lib/components/satellites/automation/settings/AutomationKeysConfigForm.svelte b/src/frontend/src/lib/components/satellites/automation/settings/AutomationKeysConfigForm.svelte
new file mode 100644
index 000000000..b12079aa8
--- /dev/null
+++ b/src/frontend/src/lib/components/satellites/automation/settings/AutomationKeysConfigForm.svelte
@@ -0,0 +1,124 @@
+<script lang="ts">
+	import { fromNullable, nonNullish, notEmptyString } from '@dfinity/utils';
+	import { onMount } from 'svelte';
+	import type { SatelliteDid } from '$declarations';
+	import Input from '$lib/components/ui/Input.svelte';
+	import Value from '$lib/components/ui/Value.svelte';
+	import { AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE } from '$lib/constants/automation.constants';
+	import {
+		AN_HOUR_NS,
+		FIFTEEN_MINUTES_NS,
+		FIVE_MINUTES_NS,
+		FORTY_FIVE_MINUTES_NS,
+		TEN_MINUTES_NS,
+		THIRTY_MINUTES_NS,
+		TWO_MINUTES_NS
+	} from '$lib/constants/duration.constants';
+	import { isBusy } from '$lib/derived/app/busy.derived';
+	import { i18n } from '$lib/stores/app/i18n.store';
+	import type { AddAccessKeyScope } from '$lib/types/access-keys';
+
+	interface Props {
+		config: SatelliteDid.OpenIdAutomationProviderConfig;
+		onsubmit: ($event: SubmitEvent) => Promise<void>;
+		scope: Omit<AddAccessKeyScope, 'admin'> | undefined;
+		maxTimeToLive: bigint | undefined;
+	}
+
+	let { onsubmit, config, scope = $bindable(), maxTimeToLive = $bindable() }: Props = $props();
+
+	// svelte-ignore state_referenced_locally
+	let controller = $state(fromNullable(config?.controller));
+	let controllerScope = $state(fromNullable(controller?.scope ?? []));
+
+	// Scope
+	let scopeInput = $state(
+		nonNullish(controllerScope) && 'Submit' in controllerScope ? 'submit' : 'write'
+	);
+
+	$effect(() => {
+		scope = notEmptyString(scopeInput) ? scopeInput : 'write';
+	});
+
+	// Max time to live
+	let maxTimeToLiveInput = $state(
+		Number(
+			fromNullable(controller?.max_time_to_live ?? []) ??
+				AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE
+		)
+	);
+
+	$effect(() => {
+		maxTimeToLive = BigInt(maxTimeToLiveInput);
+	});
+
+	let customMaxTimeToLive = $state(false);
+	onMount(() => {
+		// Only evaluated onMount as we do not want to toggle between input or select
+		// if the dev enters one of the values.
+		customMaxTimeToLive =
+			nonNullish(maxTimeToLiveInput) &&
+			BigInt(maxTimeToLiveInput) !== TWO_MINUTES_NS &&
+			BigInt(maxTimeToLiveInput) !== FIVE_MINUTES_NS &&
+			BigInt(maxTimeToLiveInput) !== TEN_MINUTES_NS &&
+			BigInt(maxTimeToLiveInput) !== FIFTEEN_MINUTES_NS &&
+			BigInt(maxTimeToLiveInput) !== THIRTY_MINUTES_NS &&
+			BigInt(maxTimeToLiveInput) !== FORTY_FIVE_MINUTES_NS &&
+			BigInt(maxTimeToLiveInput) !== AN_HOUR_NS;
+	});
+</script>
+
+<h2>{$i18n.automation.keys}</h2>
+
+<p>
+	{$i18n.automation.edit_automation_keys}
+</p>
+
+<form class="content" {onsubmit}>
+	<div class="container">
+		<div>
+			<Value>
+				{#snippet label()}
+					{$i18n.controllers.scope}
+				{/snippet}
+
+				<select name="scope" bind:value={scope}>
+					<option value="submit">{$i18n.controllers.submit}</option>
+					<option value="write">{$i18n.controllers.write}</option>
+				</select>
+			</Value>
+		</div>
+
+		<div>
+			<Value>
+				{#snippet label()}
+					{$i18n.authentication.session_duration}{#if customMaxTimeToLive}
+						({$i18n.authentication.in_nanoseconds}){/if}
+				{/snippet}
+
+				{#if customMaxTimeToLive}
+					<Input
+						name="maxTimeToLive"
+						inputType="number"
+						placeholder=""
+						bind:value={maxTimeToLiveInput}
+					/>
+				{:else}
+					<select name="maxTimeToLive" bind:value={maxTimeToLiveInput}>
+						<option value={Number(TWO_MINUTES_NS)}> {$i18n.core.two_minutes} </option>
+						<option value={Number(FIVE_MINUTES_NS)}> {$i18n.core.five_minutes} </option>
+						<option value={Number(TEN_MINUTES_NS)}> {$i18n.core.ten_minutes} </option>
+						<option value={Number(FIFTEEN_MINUTES_NS)}> {$i18n.core.fifteen_minutes} </option>
+						<option value={Number(THIRTY_MINUTES_NS)}> {$i18n.core.thirty_minutes} </option>
+						<option value={Number(FORTY_FIVE_MINUTES_NS)}> {$i18n.core.forty_five_minutes} </option>
+						<option value={Number(AN_HOUR_NS)}> {$i18n.core.an_hour} </option>
+					</select>
+				{/if}
+			</Value>
+		</div>
+	</div>
+
+	<button disabled={$isBusy} type="submit">
+		{$i18n.core.submit}
+	</button>
+</form>
diff --git a/src/frontend/src/lib/components/satellites/automation/settings/AutomationKeysSettings.svelte b/src/frontend/src/lib/components/satellites/automation/settings/AutomationKeysSettings.svelte
new file mode 100644
index 000000000..18bb1b9f6
--- /dev/null
+++ b/src/frontend/src/lib/components/satellites/automation/settings/AutomationKeysSettings.svelte
@@ -0,0 +1,114 @@
+<script lang="ts">
+	import { fromNullable, isNullish, nonNullish } from '@dfinity/utils';
+	import type { SatelliteDid } from '$declarations';
+	import Value from '$lib/components/ui/Value.svelte';
+	import { AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE } from '$lib/constants/automation.constants';
+	import {
+		AN_HOUR_NS,
+		FIFTEEN_MINUTES_NS,
+		FIVE_MINUTES_NS,
+		FORTY_FIVE_MINUTES_NS,
+		TEN_MINUTES_NS,
+		THIRTY_MINUTES_NS,
+		TWO_MINUTES_NS
+	} from '$lib/constants/duration.constants';
+	import { satelliteAutomationConfig } from '$lib/derived/satellite/satellite-configs.derived';
+	import { i18n } from '$lib/stores/app/i18n.store';
+	import { toasts } from '$lib/stores/app/toasts.store';
+	import type { Satellite } from '$lib/types/satellite';
+	import { secondsToDuration } from '$lib/utils/date.utils';
+	import { emit } from '$lib/utils/events.utils';
+
+	interface Props {
+		satellite: Satellite;
+		config: SatelliteDid.OpenIdAutomationProviderConfig;
+	}
+
+	let { satellite, config }: Props = $props();
+
+	let controller = $derived(fromNullable(config?.controller));
+
+	let controllerScope = $derived(fromNullable(controller?.scope ?? []));
+	let scope = $derived(
+		nonNullish(controllerScope) && 'Submit' in controllerScope ? 'submit' : 'write'
+	);
+
+	let maxTimeToLive = $derived(
+		fromNullable(controller?.max_time_to_live ?? []) ?? AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE
+	);
+
+	const openEditModal = () => {
+		const automationConfig = $satelliteAutomationConfig;
+
+		// If the provider config for GitHub is defined it's unlikely that the parent, the overall automation config is undefined.
+		// This is rather to be seen as a TypeScript guard.
+		if (isNullish(automationConfig)) {
+			toasts.error({
+				text: $i18n.errors.automation_config_undefined
+			});
+			return;
+		}
+
+		emit({
+			message: 'junoModal',
+			detail: {
+				type: 'edit_automation_keys_config',
+				detail: {
+					automationConfig,
+					providerConfig: config,
+					satellite
+				}
+			}
+		});
+	};
+</script>
+
+<div class="card-container with-title">
+	<span class="title">{$i18n.automation.keys}</span>
+
+	<div class="columns-3 fit-column-1">
+		<div>
+			<div>
+				<Value>
+					{#snippet label()}
+						{$i18n.controllers.scope}
+					{/snippet}
+
+					<p>{scope === 'submit' ? $i18n.controllers.submit : $i18n.controllers.write}</p>
+				</Value>
+			</div>
+		</div>
+
+		<div>
+			<div>
+				<Value>
+					{#snippet label()}
+						{$i18n.automation.access_duration}
+					{/snippet}
+
+					<p>
+						{#if maxTimeToLive === BigInt(TWO_MINUTES_NS)}
+							{$i18n.core.two_minutes}
+						{:else if maxTimeToLive === BigInt(FIVE_MINUTES_NS)}
+							{$i18n.core.five_minutes}
+						{:else if maxTimeToLive === BigInt(TEN_MINUTES_NS)}
+							{$i18n.core.ten_minutes}
+						{:else if maxTimeToLive === BigInt(FIFTEEN_MINUTES_NS)}
+							{$i18n.core.fifteen_minutes}
+						{:else if maxTimeToLive === BigInt(THIRTY_MINUTES_NS)}
+							{$i18n.core.thirty_minutes}
+						{:else if maxTimeToLive === BigInt(FORTY_FIVE_MINUTES_NS)}
+							{$i18n.core.forty_five_minutes}
+						{:else if maxTimeToLive === BigInt(AN_HOUR_NS)}
+							{$i18n.core.an_hour}
+						{:else}
+							{secondsToDuration(maxTimeToLive ?? 0n)}
+						{/if}
+					</p>
+				</Value>
+			</div>
+		</div>
+	</div>
+</div>
+
+<button onclick={openEditModal}>{$i18n.core.configure}</button>
diff --git a/src/frontend/src/lib/constants/automation.constants.ts b/src/frontend/src/lib/constants/automation.constants.ts
new file mode 100644
index 000000000..c596ac02d
--- /dev/null
+++ b/src/frontend/src/lib/constants/automation.constants.ts
@@ -0,0 +1,3 @@
+import { TEN_MINUTES_NS } from '$lib/constants/duration.constants';
+
+export const AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE = TEN_MINUTES_NS;
diff --git a/src/frontend/src/lib/constants/duration.constants.ts b/src/frontend/src/lib/constants/duration.constants.ts
index 2b2103243..4bc205458 100644
--- a/src/frontend/src/lib/constants/duration.constants.ts
+++ b/src/frontend/src/lib/constants/duration.constants.ts
@@ -2,8 +2,13 @@ const MINUTE_NANOSECONDS = 60n * 1_000_000_000n;
 const HOUR_NANOSECONDS = 60n * MINUTE_NANOSECONDS;
 const DAY_NANOSECONDS = 24n * HOUR_NANOSECONDS;
 
-// 1 day in nanoseconds
-export const AN_HOUR_NS = HOUR_NANOSECONDS;
+export const TWO_MINUTES_NS = 2n * MINUTE_NANOSECONDS;
+export const FIVE_MINUTES_NS = 5n * MINUTE_NANOSECONDS;
+export const TEN_MINUTES_NS = 10n * MINUTE_NANOSECONDS;
+export const FIFTEEN_MINUTES_NS = 15n * MINUTE_NANOSECONDS;
+export const THIRTY_MINUTES_NS = 30n * MINUTE_NANOSECONDS;
+export const FORTY_FIVE_MINUTES_NS = 45n * MINUTE_NANOSECONDS;
+export const AN_HOUR_NS = HOUR_NANOSECONDS; // One hour max for automation
 export const TWO_HOURS_NS = 2n * AN_HOUR_NS;
 export const FOUR_HOURS_NS = 4n * AN_HOUR_NS;
 export const EIGHT_HOURS_NS = 8n * AN_HOUR_NS;
@@ -11,4 +16,4 @@ export const HALF_DAY_NS = 12n * AN_HOUR_NS;
 export const ONE_DAY_NS = DAY_NANOSECONDS;
 export const A_WEEK_NS = 7n * ONE_DAY_NS;
 export const TWO_WEEKS_NS = 2n * A_WEEK_NS;
-export const A_MONTH_NS = 30n * ONE_DAY_NS; // 30 days. Max.
+export const A_MONTH_NS = 30n * ONE_DAY_NS; // 30 days. max for authentication
diff --git a/src/frontend/src/lib/derived/satellite/github.derived.ts b/src/frontend/src/lib/derived/satellite/github.derived.ts
new file mode 100644
index 000000000..e6529c76f
--- /dev/null
+++ b/src/frontend/src/lib/derived/satellite/github.derived.ts
@@ -0,0 +1,14 @@
+import { satelliteAutomationConfig } from '$lib/derived/satellite/satellite-configs.derived';
+import { fromNullable, isNullish } from '@dfinity/utils';
+import { derived } from 'svelte/store';
+
+export const githubConfig = derived([satelliteAutomationConfig], ([$satelliteAutomationConfig]) => {
+	// Undefined not loaded or null as set as such
+	if (isNullish($satelliteAutomationConfig)) {
+		return $satelliteAutomationConfig;
+	}
+
+	const openid = fromNullable($satelliteAutomationConfig.openid);
+	const github = openid?.providers.find(([key]) => 'GitHub' in key);
+	return github?.[1] ?? null;
+});
diff --git a/src/frontend/src/lib/i18n/en.json b/src/frontend/src/lib/i18n/en.json
index ebc0e0fb4..b3f305d59 100644
--- a/src/frontend/src/lib/i18n/en.json
+++ b/src/frontend/src/lib/i18n/en.json
@@ -98,6 +98,12 @@
 		"staging": "Staging",
 		"test": "Test",
 		"unspecified": "Unspecified",
+		"two_minutes": "Two minutes",
+		"five_minutes": "Five minutes",
+		"ten_minutes": "Ten minutes",
+		"fifteen_minutes": "Fifteen minutes",
+		"thirty_minutes": "Thirty minutes",
+		"forty_five_minutes": "Forty-five minutes",
 		"an_hour": "An hour",
 		"two_hours": "Two hours",
 		"four_hours": "Four hours",
@@ -753,7 +759,8 @@
 		"build_repo_key_invalid_github_url": "Only GitHub repositories are supported. Please enter the GitHub URL of your repository.",
 		"build_repo_key_owner_not_found": "Repository owner not found in URL. Please enter a complete GitHub repository URL.",
 		"build_repo_key_repo_not_found": "Repository name not found in URL. Please enter a complete GitHub repository URL.",
-		"create_automation_config": "An error occurred while saving your automation configuration."
+		"save_automation_config": "An error occurred while saving your automation configuration.",
+		"automation_config_undefined": "The automation configuration is undefined, which is unexpected. Try reloading the page."
 	},
 	"document": {
 		"owner": "Owner",
@@ -1119,6 +1126,9 @@
 		"view_workflow": "View workflow run on GitHub",
 		"view_commit": "View commit on GitHub",
 		"view_branch": "View branch run on GitHub",
-		"view_contributor": "View contributor on GitHub"
+		"view_contributor": "View contributor on GitHub",
+		"keys": "Automation Keys",
+		"access_duration": "Access Duration",
+		"edit_automation_keys": "Configure how your workflows access your Satellite and how long their keys remain valid."
 	}
 }
diff --git a/src/frontend/src/lib/i18n/zh-cn.json b/src/frontend/src/lib/i18n/zh-cn.json
index 698f3271e..03591e063 100644
--- a/src/frontend/src/lib/i18n/zh-cn.json
+++ b/src/frontend/src/lib/i18n/zh-cn.json
@@ -99,6 +99,12 @@
 		"staging": "预发环境",
 		"test": "测试环境",
 		"unspecified": "未定义状态",
+		"two_minutes": "两分钟",
+		"five_minutes": "五分钟",
+		"ten_minutes": "十分钟",
+		"fifteen_minutes": "十五分钟",
+		"thirty_minutes": "三十分钟",
+		"forty_five_minutes": "四十五分钟",
 		"an_hour": "一小时",
 		"two_hours": "两小时",
 		"four_hours": "四小时",
@@ -755,7 +761,8 @@
 		"build_repo_key_invalid_github_url": "仅支持 GitHub 仓库。请输入您的 GitHub 仓库 URL。",
 		"build_repo_key_owner_not_found": "在 URL 中未找到仓库所有者。请输入完整的 GitHub 仓库 URL。",
 		"build_repo_key_repo_not_found": "在 URL 中未找到仓库名称。请输入完整的 GitHub 仓库 URL。",
-		"create_automation_config": "保存自动化配置时发生错误。"
+		"save_automation_config": "保存自动化配置时发生错误。",
+		"automation_config_undefined": "自动化配置未定义，这是意外情况。请尝试重新加载页面。"
 	},
 	"document": {
 		"owner": "所有者",
@@ -1121,6 +1128,9 @@
 		"view_workflow": "在 GitHub 上查看工作流运行",
 		"view_commit": "在 GitHub 上查看提交",
 		"view_branch": "在 GitHub 上查看分支",
-		"view_contributor": "在 GitHub 上查看贡献者"
+		"view_contributor": "在 GitHub 上查看贡献者",
+		"keys": "自动化密钥",
+		"access_duration": "访问时长",
+		"edit_automation_keys": "配置工作流访问 Satellite 的方式及其密钥的有效期。"
 	}
 }
diff --git a/src/frontend/src/lib/services/satellite/automation/automation.config.edit.services.ts b/src/frontend/src/lib/services/satellite/automation/automation.config.edit.services.ts
new file mode 100644
index 000000000..bba0acf13
--- /dev/null
+++ b/src/frontend/src/lib/services/satellite/automation/automation.config.edit.services.ts
@@ -0,0 +1,116 @@
+import type { SatelliteDid } from '$declarations';
+import { setAutomationConfig } from '$lib/api/satellites.api';
+import { AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE } from '$lib/constants/automation.constants';
+import { loadSatelliteConfig } from '$lib/services/satellite/satellite-config.services';
+import { i18n } from '$lib/stores/app/i18n.store';
+import { toasts } from '$lib/stores/app/toasts.store';
+import type { AddAccessKeyScope } from '$lib/types/access-keys';
+import type { OptionIdentity } from '$lib/types/itentity';
+import type { Satellite } from '$lib/types/satellite';
+import { isNullish, toNullable } from '@dfinity/utils';
+import type { Identity } from '@icp-sdk/core/agent';
+import { get } from 'svelte/store';
+
+export interface UpdateAutomationConfigResult {
+	success: 'ok' | 'error';
+	err?: unknown;
+}
+
+interface UpdateResult {
+	result: 'success' | 'error';
+	err?: unknown;
+}
+
+export const updateAutomationKeysConfig = async ({
+	automationConfig,
+	providerConfig,
+	maxTimeToLive,
+	scope,
+	identity,
+	satellite
+}: {
+	scope: Omit<AddAccessKeyScope, 'admin'> | undefined;
+	maxTimeToLive: bigint | undefined;
+	automationConfig: SatelliteDid.AutomationConfig;
+	providerConfig: SatelliteDid.OpenIdAutomationProviderConfig;
+	satellite: Satellite;
+	identity: OptionIdentity;
+}): Promise<UpdateAutomationConfigResult> => {
+	const labels = get(i18n);
+
+	if (isNullish(identity) || isNullish(identity?.getPrincipal())) {
+		toasts.error({ text: labels.core.not_logged_in });
+		return { success: 'error' };
+	}
+
+	const updateProviderConfig: SatelliteDid.OpenIdAutomationProviderConfig = {
+		...providerConfig,
+		controller:
+			scope === 'write' && maxTimeToLive === AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE
+				? []
+				: toNullable({
+						max_time_to_live:
+							maxTimeToLive === AUTOMATION_DEFAULT_MAX_SESSION_TIME_TO_LIVE
+								? []
+								: toNullable(maxTimeToLive),
+						scope: scope === 'write' ? [] : toNullable({ Submit: null })
+					})
+	};
+
+	const updateAutomationConfig: SatelliteDid.SetAutomationConfig = {
+		...automationConfig,
+		openid: toNullable({
+			observatory_id: [],
+			providers: [[{ GitHub: null }, updateProviderConfig]]
+		})
+	};
+
+	const result = await updateConfig({ identity, satellite, config: updateAutomationConfig });
+
+	if (result.result === 'error') {
+		return {
+			success: 'error',
+			err: result.err
+		};
+	}
+
+	if (result.result === 'success') {
+		// Reload Satellite configuration
+		await loadSatelliteConfig({
+			identity,
+			satelliteId: satellite.satellite_id,
+			reload: true
+		});
+	}
+
+	return { success: 'ok' };
+};
+
+const updateConfig = async ({
+	satellite: { satellite_id: satelliteId },
+	config,
+	identity
+}: {
+	satellite: Satellite;
+	config: SatelliteDid.SetAutomationConfig;
+	identity: Identity;
+}): Promise<UpdateResult> => {
+	try {
+		await setAutomationConfig({
+			satelliteId,
+			config,
+			identity
+		});
+	} catch (err: unknown) {
+		const labels = get(i18n);
+
+		toasts.error({
+			text: labels.errors.save_automation_config,
+			detail: err
+		});
+
+		return { result: 'error', err };
+	}
+
+	return { result: 'success' };
+};
diff --git a/src/frontend/src/lib/services/satellite/automation/automation.config.services.ts b/src/frontend/src/lib/services/satellite/automation/automation.config.services.ts
index d904c7f89..2983bd9dd 100644
--- a/src/frontend/src/lib/services/satellite/automation/automation.config.services.ts
+++ b/src/frontend/src/lib/services/satellite/automation/automation.config.services.ts
@@ -140,7 +140,7 @@ const setAutomationConfig = async ({
 		const labels = get(i18n);
 
 		toasts.error({
-			text: labels.errors.create_automation_config,
+			text: labels.errors.save_automation_config,
 			detail: err
 		});
 
diff --git a/src/frontend/src/lib/types/i18n.d.ts b/src/frontend/src/lib/types/i18n.d.ts
index 98b3a8724..fe4addb46 100644
--- a/src/frontend/src/lib/types/i18n.d.ts
+++ b/src/frontend/src/lib/types/i18n.d.ts
@@ -101,6 +101,12 @@ interface I18nCore {
 	staging: string;
 	test: string;
 	unspecified: string;
+	two_minutes: string;
+	five_minutes: string;
+	ten_minutes: string;
+	fifteen_minutes: string;
+	thirty_minutes: string;
+	forty_five_minutes: string;
 	an_hour: string;
 	two_hours: string;
 	four_hours: string;
@@ -771,7 +777,8 @@ interface I18nErrors {
 	build_repo_key_invalid_github_url: string;
 	build_repo_key_owner_not_found: string;
 	build_repo_key_repo_not_found: string;
-	create_automation_config: string;
+	save_automation_config: string;
+	automation_config_undefined: string;
 }
 
 interface I18nDocument {
@@ -1158,6 +1165,9 @@ interface I18nAutomation {
 	view_commit: string;
 	view_branch: string;
 	view_contributor: string;
+	keys: string;
+	access_duration: string;
+	edit_automation_keys: string;
 }
 
 interface I18n {
diff --git a/src/frontend/src/lib/types/modal.ts b/src/frontend/src/lib/types/modal.ts
index 7c44578c3..2a30031fa 100644
--- a/src/frontend/src/lib/types/modal.ts
+++ b/src/frontend/src/lib/types/modal.ts
@@ -131,6 +131,11 @@ export interface JunoModalWalletDetail {
 
 export type JunoModalConvertIcpToCyclesDetails = Pick<JunoModalWalletDetail, 'selectedWallet'>;
 
+export interface JunoModalAutomationConfigDetail extends JunoModalWithSatellite {
+	automationConfig: SatelliteDid.AutomationConfig;
+	providerConfig: SatelliteDid.OpenIdAutomationProviderConfig;
+}
+
 export type JunoModalDetail =
 	| JunoModalUpgradeSatelliteDetail
 	| JunoModalUpgradeDetail
@@ -150,7 +155,8 @@ export type JunoModalDetail =
 	| JunoModalChangeDetail
 	| JunoModalCdnUpgradeDetail
 	| JunoModalEditAuthConfigDetail
-	| JunoModalWalletDetail;
+	| JunoModalWalletDetail
+	| JunoModalAutomationConfigDetail;
 
 export interface JunoModal<T extends JunoModalDetail> {
 	type:
@@ -185,6 +191,7 @@ export interface JunoModal<T extends JunoModalDetail> {
 		| 'upgrade_satellite_with_cdn'
 		| 'convert_icp_to_cycles'
 		| 'reconcile_out_of_sync_segments'
-		| 'create_automation';
+		| 'create_automation'
+		| 'edit_automation_keys_config';
 	detail?: T;
 }
diff --git a/src/frontend/src/routes/(split)/deployments/+page.svelte b/src/frontend/src/routes/(split)/deployments/+page.svelte
index 12627587f..e8aa01b9a 100644
--- a/src/frontend/src/routes/(split)/deployments/+page.svelte
+++ b/src/frontend/src/routes/(split)/deployments/+page.svelte
@@ -5,6 +5,7 @@
 	import Loaders from '$lib/components/app/loaders/Loaders.svelte';
 	import IdentityGuard from '$lib/components/auth/guards/IdentityGuard.svelte';
 	import Automation from '$lib/components/satellites/automation/Automation.svelte';
+	import AutomationSettings from '$lib/components/satellites/automation/AutomationSettings.svelte';
 	import SatelliteGuard from '$lib/components/satellites/guards/SatelliteGuard.svelte';
 	import NoTabs from '$lib/components/ui/NoTabs.svelte';
 	import Tabs from '$lib/components/ui/Tabs.svelte';
@@ -21,6 +22,10 @@
 		{
 			id: Symbol('1'),
 			labelKey: 'automation.title'
+		},
+		{
+			id: Symbol('2'),
+			labelKey: 'core.settings'
 		}
 	];
 
@@ -43,6 +48,8 @@
 				<TabsCmp>
 					{#if $store.tabId === $store.tabs[0].id}
 						<Automation {satellite} />
+					{:else if $store.tabId === $store.tabs[1].id}
+						<AutomationSettings {satellite} />
 					{/if}
 				</TabsCmp>
 			{/snippet}