Configure settings for
- Click Access and then go to Token Validation > OAuth Key Management.
-
Choose to enable or disable key rolling:
- To enable key rolling, select the Key Roll Enabled check box.
- To disable key rolling, clear the Key Roll Enabled check box.
- To specify the interval at which you want to roll keys, enter a value (in hours) in the Key Roll Enabled (H) field.
-
From the Signing Algorithm list, select a signing
algorithm to protect the integrity of the token when you use private key
JSON Web Token (JWT) JSON Web Token (JWT) JWT An IETF standard container format for a JSON object used for the secure exchange of content, such as identity or entitlement information. To read the industry standard, see RFC 7519 OAuth client authentication.OAuth client The application in an OAuth framework that requests access to resources. If the request is approved by the authorization server, the client is issued an access token for the resources. If you select Automatic, you will use the algorithm specified in the
OpenID Provider (OP) metadata.OpenID Provider (OP) OP In OAuth terms, an authorization server (AS). The OP/AS issues access tokens to protected resources for approved clients (relying parties). The clients use the access token to access the protected resources hosted by the OAuth resource server. - Click Save.