Access Troubleshooting: BIG-IP APM OIDC integration

Table of Contents Introduction Implementation and troubleshooting Check the logs Case 1: Connection reset after authentication Troubleshooting steps: Case 2: Expired JWT Key...

Published Jul 08, 2024

Version 1.0

application delivery

devops

security

series-f5-access-security

Verified Designs

momahdy

Employee

Principal Technical Marketing Engineer - Focus on BIG-IP

View Profile

DevBabu

Cirrus

Jun 05, 2025

Thank you for the article. In my case I am getting 'session.oauth.scope.last.errMsg' set to 'Invalid JWS token'. What would be the reason for this error message. I took packet capture, grabbed id token provided by IDP. It is valid.

momahdy
Employee
Jun 06, 2025
It seems the challenge in how scope (Server) confirm the JWS, so may be check the assigned server in the VPE, also check if you are performing internal / external validation try to explore both to match what works better for your deployment.

Access Troubleshooting: BIG-IP APM OIDC integration

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS