Private Key JWT - Replay Prevention
Require Signed Requests
Require JWT Secured Authorization Response Mode (JARM)
Default Access Token Manager
Restrict to Default Access Token Manager
Persistent Grants Max Lifetime	Use Global Setting Grants Do Not Expire
Persistent Grants Idle Timeout	Use Global Setting Grants Do Not Timeout Due To Inactivity
Client Authentication Certificate Issuer DN
Refresh Token Rolling Policy	Use Global Setting Don't Roll Roll
Refresh Token Rolling Interval	Use Global Setting
Refresh Token Rolling Grace Period (seconds)	Use Global Setting
Require offline_access Scope To Issue Refresh Tokens	Use Global Setting Yes No
offline_access Require Consent Prompt	Use Global Setting Yes No
OpenID Connect	ID Token Signing Algorithm The algorithm '' is not supported. Policy
Device Authorization Grant	Use Global Settings Override
	User Authorization URL Pending Authorization Timeout (seconds) Device Polling Interval (seconds) Bypass Activation Code Confirmation
Require Proof Key For Code Exchange (PKCE)
CIBA	Polling Interval (seconds) Policy Require CIBA Signed Requests
Token Exchange	Processor Policy
Client Secret Retention Period	Use Global Setting
Malicious Actions Count For Lockout	Use Global Setting Do Not Lockout