Unable to use Keycloak Key Manager for "Try Out Block" in WSO2 APIM dev-portal

[iam8139]

I tried to use Keycloak Key Manager for the "Try out" Block in the WSO2 APIM dev portal. By default, Resident key Manager is selected for the try-out console ->

If I disable Resident Key Manager in the WSO2 admin console, It does not allow me to create any token ->

Is there any configuration available to use the Keycloak key manager for the try-out console ??

[ahmaddehghani]

Adding the fix (below) in the deployment.toml has resolved our issue.

[authentication.framework.extensions] 
provisioning_handler = "org.wso2.carbon.identity.application.authentication.framework.handler.provisioning.impl.SystemRolesRetainedProvisionHandler"

In our case, we remove all applications created prior to the issue.

for choice custom key manager follow below:

In the API Publisher, navigate to the API you've selected or created, and go to the "Edit" section of the API configuration.

publisher -> runtime section -> Application level security -> Configure the key manager -> Permission selected -> choice keycloak/custom key-manager (not selected Resident Key Manager)