The authorization policy fails if they are configured based on any of the following attributes:
LDAP Attribute
Liberty User profile
Authentication Contract
Credential Profile
To work around this problem, configure the roles in the Identity Server based on these attributes, and configure the authorization policies for the J2EE agents based on these identity roles.