A connected app is much like an "app" on Facebook. The actual app exists elsewhere, but authenticates with Facebook to retrieve database information (e.g. your friends, date of birth, and email).
Simply direct the user to the authentication service (such as https://login.salesforce.com/services/oauth2/authorize
) with your connected app details, and the user will be prompted to login. On successful login, they may need to authorize the app ("grant"), at which point, salesforce.com will redirect the user back to the app with an access token the app can use to leverage the API, plus some user information (like the URL to use for API calls).
Depending on if you're using the Web Service flow or User-Agent flow, your process may be slightly different. One gives you a token that you have to "cash in" for a real access token, while the other immediately provides an access token. The Web Service flow uses the client secret as an extra password (more protection), versus the User-Agent flow (for untrusted environments).
The connected app does not need to exist in the other org before the first use, but if it doesn't, an administrator needs to be the first one to use the application so they can grant access to the app. This allows administrators to review what information is accessible to the app, and configure who can use the app.
Best Answer
You need to create a new app. Because consumer secret is bind with the app you can't change it.
Although you can try one option in the existing app remove outh scope and save it and again edit and create new oAuth so that it will generate new key and secret.
Reference to create Oauth