Re: [Dev] 401 Error: Unauthorized - Illegal access attempt from IP address 10.100.0.187 while trying to authenticate access to service ExternalTryitService

Hi LacraM, The original issue [1] was reported in 2013 and pretty old. Can you let us know which API Manager and Identity Server version you are using? [1] :

Re: [Dev] Returning token state from Identity Server introspect response.

Thanks Farasath and Maduranga. Hi Nuwan/Sanjeewa, As per the above we won't be able to respond to an api request with reason for an inactive token such as 'token expired' but we will respond as 'token is inactive'. Appreciate your thoughts. Thanks & Regards, Ishara Cooray Senior Software