Hi,
If I understand correctly you have created multiple OAuth profiles on the broker?
You don’t need to do that - you only need one OAuth profile per OAuth authorization server (ie the server that issues/manages tokens).
The OAuth profile defines the “Username Claim Name” and “Authorization Groups Claim Name” that tell the broker which information to use to map the appropriate ACL and Client Profile to the incoming connection.
This blog walks you through the PS+ admin console setup for OAuth - maybe it helps?
(Initial link I posted was outdated)