Skip to main content
After you’ve created an Access Grant and delivered the initial credentials, you may need to add new access methods or revoke existing ones — without changing the grant itself. This page covers operations on individual access methods. To update the schedule, resources, or delete the entire grant, see Managing Access Grants.

Adding an Access Method

A single Access Grant can have multiple access methods. You can add new ones at any time — for example:
  • A guest originally received a PIN code but now also wants a mobile key for hands-free entry.
  • A building manager needs to issue a key card for a contractor who doesn’t have a smartphone.
  • An office tenant wants to add a cloud key so their front desk app can trigger remote unlocks for visitors.
The new access method inherits the schedule and resources from the existing Access Grant automatically. 
# Guest wants a mobile key in addition to their PIN code
access_method = seam.access_methods.create(
    access_grant_id="ef83cca9-5fdf-4ac2-93f3-c21c5a8be54b",
    mode="mobile_key",
)
Once created, deliver the new access method the same way as any other — see the delivery guides for PIN codes, mobile keys, key cards, instant keys, or cloud keys.

Revoking an Access Method

Revoke a single access method when you need to disable one credential while keeping the rest active. Common scenarios include:
  • A guest lost their key card — revoke the card but keep their PIN code working so they’re not locked out.
  • A tenant’s phone was stolen — revoke the mobile key immediately while a replacement is set up.
  • A temporary cloud key was issued for a one-time visitor and is no longer needed.
# Guest lost their key card — revoke it, keep PIN active
seam.access_methods.delete(
    access_method_id="f47ac10b-58cc-4372-a567-0e02b2c3d479"
)
Seam removes the credential from the device or access system and emits an access_method.deleted event. Other access methods under the same Access Grant are unaffected.
To revoke all access for a person at once — for example, on checkout or offboarding — delete the entire Access Grant instead.

Revoke and Replace

A common pattern is to revoke a compromised credential and immediately issue a replacement: 
# Revoke the lost card
seam.access_methods.delete(
    access_method_id="f47ac10b-58cc-4372-a567-0e02b2c3d479"
)

# Issue a replacement card under the same grant
new_card = seam.access_methods.create(
    access_grant_id="ef83cca9-5fdf-4ac2-93f3-c21c5a8be54b",
    mode="card",
)
The replacement card will need to be encoded before it’s ready for the guest.