Azure B2c OIDC - The key type 'EC' from the JSON web keys endpoint 'https://akztest/pf/JWKS is not a supported key type.

Akz0rz 1 Reputation point
2019-12-04T00:57:40.797+00:00

While setting up Azure B2C OIDC to PingFederate I get the following error:
The key type 'EC' from the JSON web keys endpoint 'https://akztest/pf/JWKS is not a supported key type.

I am using the proper .well-known\openid-configuration endpoint.

I have set my Access token manager to use RSA, but it's as if Microsoft is not allowing anything because the JWKS have other cyphers?

Please help.

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,639 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,460 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. AmanpreetSingh-MSFT 56,306 Reputation points
    2019-12-04T05:33:24.613+00:00

    @Akz0rz
    Azure AD B2C cannot parse the Identity provider metadata when it contains EC keys. So, it requires exposing metadata that only contains RSA Keys. We have a feature request opened to add support for EC Keys in future but there is no ETA as of now.

    ---------------------------------------------------------------------------------------------------------------

    Please "mark as answer" or "vote as helpful" wherever the information provided helps you to help others in the community.