Forum Discussion

Nimbostratus

Jan 09, 2025

EntraID + F5 as Oauth client/resource server not sending ID Token to app

Hello, Here is the basic setup. F5 is configured to use EntraID and is set up as the client+resource server. When a user logs into the web app via EntraID they are able to login just fine. Ho...

Nacreous

Jan 24, 2025

I am bit confused
When you talk about web app you are reffering to the actual web app server or to an APM policy
Cause if you want to consume oauth tokens on web app (pool member) you need to configure it as resource server too.
Otherwise it makes totally sense no to be able to validate the token

as for ./default scope it seems to be a special scope which should not be used in cases like this.
and yes it somehow don't need the jwt key to be validated

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

EntraID + F5 as Oauth client/resource server not sending ID Token to app

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Running version of Tenant during Deployement shows Unavailable

Rerouting iRule not rerouting correctly

whats the guideline for deciding Virtual Disk Size during Tenant Creation

How APM GET IOS UUID & Andriod MAC

F5OS Tenant Radius Issues

Related Content

Select Between Multiple Network Access Resources with the Edge Client

The TCP Send Buffer, In-Depth

Send OTP via sendgrid(email) API

Select Between Multiple Network Access Resources with the Edge Client – Local DB Auth

Convert curl command to BIG-IP Monitor Send String

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS