Hi, is it possible to use own Signing Key (certificate) to sign JWT tokens? thanks

…but then I am more doubtful now :slight_smile: As I have seen a case where an Auth0 customer was using the metadata https://customer-domain/metadata/.well-known/jwks.json with its own certificate; i.e. the attribute “x5c”: was point to their certificate. So either I miss something or it is possibl…

I double checked internally and the consensus was that what you’ve described isn’t supported - I’d be curious to know if there is somewhere you can point to that shows where this has been implemented? I’m unable to find any documentation whatsoever :confused: As an aside, it is possible to provide …

I’ve clarified with customer and you are right. Their certificate was for another purpose indeed. Else they use Auth0 cert to verify the token issued by Auth0.

Thanks for following up here :smile:

Custom Signing Key

Get Help

ty.frith August 23, 2022, 6:44pm 4

Hey there @banto, good question! To answer your question, no it is not possible to use your own key to sign JWT tokens - These are unique to each tenant and stored in a Key Management System (KMS). This is at its core a security precaution.

Add my own custom signing key

Topic		Replies	Views
Add my own custom signing key Archived jwt , signing_key	5	4651	August 23, 2022
Jwt.io does not recognize Auth0 signing certificate for RS256 JWT.io	2	301	January 24, 2025
How to forge an RS256 token with the Signing Key Get Help test , other	3	7197	June 9, 2023
Custom Signing Cert on Enterprise Connections Get Help management-api , connections-management-api	1	128	November 22, 2024
Invalid certificate from jwks for signing JWT Archived jwt , jwks , access_token , certificate	1	5632	December 28, 2017

Custom Signing Key

Related topics