Bug ID 995029: Configuration is not updated during auto-discovery

Last Modified: Oct 19, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,, 15.0.0, 15.0.1,,,,, 15.1.0,,,,,, 15.1.1, 15.1.2,, 15.1.3,, 16.0.0,, 16.0.1,,

Fixed In:
16.1.0, 15.1.4,

Opened: Feb 18, 2021
Severity: 2-Critical


Auto-discovery fails, resulting in OAuth failure. In /var/log/apm: -- OAuth Client: failed for server '<server>' using 'authorization_code' grant type (<grant type>), error: None of the configured JWK keys match the received JWT token


JWT auto-discovery fails and the configuration is not updated.


JSON Web Token (JWT) auto-discovery is enabled via JSON Web Keys (JWK).


Use the GUI to manually retrieve the JWKs by clicking the 'Discovery' button for OpenID URI in 'Access :: Federation : OAuth Client / Resource Server : Provider :: <name of provider>.

Fix Information

Fixed an issue with auto-discovery and JWKs.

Behavior Change