With the implementation of the API server, we want to expose our One Identity Manager capabilities via API's within our organization. In our test setup we successfully managed to authenticate to the authentication API using the oauthrolebased api, and with the session token retrieved from this call we were able to do additional api calls. However this is not the required setup, because the systems we integrate with dont have an authorization code, but have already an Oauth access token. We red in the documentation this should also be possible by providing the access token as a bearer token in the authentication header of every api call(which makes the authentication api not needed anymore). However every time we send an api call with this bearer token, we get an error 401 token has expired(which is clearly not the case, because we just retrieved it with an api call to the authorization server). We wonder what is causing the issue, or whether this is not possible within OI.
Addition:
We also tried what is described here, but this also gave an 500 internal server error:
Identity Manager 9.0 LTS - Authorization and Authentication Guide (oneidentity.com)