For registering OAuth client applications by using Identity Server, you must have a role called NAM_OAUTH2_DEVELOPER assigned.
The following are the recommended conditions in an Identity Server Role policy that assigns the NAM_OAUTH2_DEVELOPER role:
LDAP OU conditions
The client registration will not work if this role policy contains any of the following conditions:
Liberty User profile
Roles from Identity Provider