Expand my Community achievements bar.

SOLVED

AEM to Target Integration migration from Service Account (JWT) credentials to OAuth Server-to-Server credentials

Avatar

Level 1
Level 1
5/8/23 2:44:22 PM

Hi,

 

I recently received email to "Migrating from Service Account (JWT) credential to OAuth Server-to-Server credential" - here is the link in the email -  https://developer.adobe.com/developer-console/docs/guides/authentication/ServerToServerAuthenticatio...

 

The migration works well in the developer console, but once the old JWT credential is deleted, when I go in AEM in the "ADobe IMS Technical Account" and check the health of the connection, I get now error Dev Adobe Target IMS: failed to get access token from authorization server status: 400 response: {"error_description":"The client must have the exchange_jwt scope.","error":"invalid_client"} 

 

Any suggestion on how to fix this urgently is appreciated.

 

Thanks,
Krass

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

Developer Console

Views

1.4K

Replies

5
Sign in to like this content

Total Likes

Translate
Translate
1 person had this problem.
1 Accepted Solution

Avatar

Correct answer by
Level 1
Level 1
5/17/23 2:05:06 PM
In response to krassibb

Looks like the AEM team will be responsible to update the AEM IMS Client config to use the new OAuth Server-to-Server credential. In the meantime, the old JWT credential will be still valid.

View solution in original post

Views

1.3K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
5 Replies

Avatar

Employee
Employee
5/9/23 4:30:57 AM

Hi @krassibb

 

Did you also update your AEM instance to use the new credential?

 

Thanks
Manik

Views

1.3K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
5/9/23 9:17:27 AM

Hi @tmj,

 

Yes, I did update the credentials in AEM IMS configuration. Although, the configuration fails on the JWT Payload mandatory section.

 

Please notify the AEM product team about the issue.

 

Thanks,

Krass

Views

1.3K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Level 1
Level 1
5/17/23 2:05:06 PM
In response to krassibb

Looks like the AEM team will be responsible to update the AEM IMS Client config to use the new OAuth Server-to-Server credential. In the meantime, the old JWT credential will be still valid.

Views

1.3K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 1
Level 1
6/13/23 12:20:57 PM
In response to krassibb

Did we get a solution for this ? I am facing the same issue "Dev Adobe Target IMS: failed to get access token from authorization server status: 400 response: {"error_description":"The client must have the exchange_jwt scope.","error":"invalid_client"} "

Views

1.1K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
6/27/23 1:51:45 AM
In response to Sreekanthkp

We are having the same issue after migrating from JWT to OAuth. I'm unable to find any documentation on how to migrate our on-prem AEM to this new authentication.

 

Adobe-Target-IMS-IO: failed to get access token from authorization server status: 400 response: {"error_description":"The client must have the exchange_jwt scope.","error":"invalid_client"}

Edit: we have created a support ticket at Adobe to check if can revert the migration since AEM does not support OAuth for the export of Experience Fragments to Target yet.

Views

986

Replies

0
Sign in to like this content

Total Likes

Translate
Translate