Expand my Community achievements bar.

Submissions are now open for the 2026 Adobe Experience Maker Awards.
Apply Now
SOLVED

Migration from JWT to OAuth Server-to-Server in AEM IMS integration

Avatar

Level 2
Level 2
8/14/25 7:21:15 PM

Hi folks,

If JWT authentication is deprecated for Adobe IMS integration in AEM as a Cloud Service, is there a migration path or documentation showing how to replace JWT with OAuth Server-to-Server in AEM code (for example, replacing ServicePrincipalCredentials with an OAuth-based flow)?

Views

135

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
8/15/25 4:26:07 AM

Hi @NavyaVo,

Yes - Adobe has officially deprecated Service Account (JWT) authentication for IMS integrations. The recommended replacement is OAuth Server-to-Server credentials.

Migration steps for your reference:

  1. In Adobe Developer Console, create new OAuth Server-to-Server credentials for your AEM project.

  2. Update your AEM code to request access tokens using the new client ID, client secret, and technical account details instead of ServicePrincipalCredentials.

  3. Use Adobe’s IMS token endpoint:

    POST https://ims-na1.adobelogin.com/ims/token/v3
Content-Type: application/x-www-form-urlencoded
grant_type=client_credentials
client_id=...
client_secret=...
scope=...

  4. Replace any JWT signing logic with a direct OAuth token request.

Reference:


Santosh Sai

AEM BlogsLinkedIn


View solution in original post

Views

115

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
1 Reply

Avatar

Correct answer by
Community Advisor
Community Advisor
8/15/25 4:26:07 AM

Hi @NavyaVo,

Yes - Adobe has officially deprecated Service Account (JWT) authentication for IMS integrations. The recommended replacement is OAuth Server-to-Server credentials.

Migration steps for your reference:

  1. In Adobe Developer Console, create new OAuth Server-to-Server credentials for your AEM project.

  2. Update your AEM code to request access tokens using the new client ID, client secret, and technical account details instead of ServicePrincipalCredentials.

  3. Use Adobe’s IMS token endpoint:

    POST https://ims-na1.adobelogin.com/ims/token/v3
Content-Type: application/x-www-form-urlencoded
grant_type=client_credentials
client_id=...
client_secret=...
scope=...

  4. Replace any JWT signing logic with a direct OAuth token request.

Reference:


Santosh Sai

AEM BlogsLinkedIn


Views

116

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
Related Conversations
Uncertainty on How to Use Experience Fragments on an Angular Site Solved

Views

275

Likes

0

Replies

3
How to properly secure DAM assets Solved

Views

153

Likes

0

Replies

1
Helix-4 to Helix-5 Migration - Prerequisites & Docs

Views

29

Likes

0

Replies

0
Enable Workflow in Universal Editor

Views

132

Likes

0

Replies

1
How to use multiple path patterns inside Sling Filter?

Views

44

Likes

0

Replies

1