question

Akz0rz-6344 avatar image
0 Votes"
Akz0rz-6344 asked ·

Azure B2c OIDC - The key type 'EC' from the JSON web keys endpoint 'https://akztest/pf/JWKS is not a supported key type.

While setting up Azure B2C OIDC to PingFederate I get the following error: The key type 'EC' from the JSON web keys endpoint 'https://akztest/pf/JWKS is not a supported key type.

I am using the proper .well-known\openid-configuration endpoint.

I have set my Access token manager to use RSA, but it's as if Microsoft is not allowing anything because the JWKS have other cyphers?

Please help.

azure-active-directoryazure-ad-b2c
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

@Akz0rz-6344 Azure AD B2C cannot parse the Identity provider metadata when it contains EC keys. So, it requires exposing metadata that only contains RSA Keys. We have a feature request opened to add support for EC Keys in future but there is no ETA as of now.


Please "mark as answer" or "vote as helpful" wherever the information provided helps you to help others in the community.

· 3 · Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Any update on this, I saw the other URL as well but didn;t find any update... when the support of EC type key is going to be available????

If not soon, then what is the interim solution other then asking IdP to disable it, which is kind of not doable as that impact their other applications.

0 Votes 0 · ·