The HCL Digital Solutions (DS) Keycloak service is based on Keycloak and adds configuration, an HCL branded login UI and more. It serves as a reference for OIDC based authentication across DS products.
For troubleshooting OIDC on WebSphere you can use the debug parameters for OpenID Connect (OIDC), OpenID 2.0, and JWT authentication*=info:com.ibm.ws.security.oidc.*=all:com.ibm.ws.security.openidconnect.*=all:com.ibm.ws.security.openid20.*=all:com.ibm.ws.security.web.*=all
In the keycloak project I don't find a troubleshooting document about OIDC and Connections.
This IBM knowledge base document MustGather: Web Single Sign-on problems with WebSphere Application Server is a good starting point for a troubleshooting document in this project.
For troubleshooting OIDC on WebSphere you can use the debug parameters for OpenID Connect (OIDC), OpenID 2.0, and JWT authentication
*=info:com.ibm.ws.security.oidc.*=all:com.ibm.ws.security.openidconnect.*=all:com.ibm.ws.security.openid20.*=all:com.ibm.ws.security.web.*=all