When using the Decode ID Token in policy you may see an error at policy execution of  "Custom Assertion is misconfigured" 

ca api gateway 11.x

After investigation it was found there were duplicate conflict OpenIDConnectAssertion-*.jar in location  /opt/SecureSpan/Gateway/runtime/modules/lib/ having multiple files with this name from differing versions were causing library conflicts in java in the usage of the Oauth Assertions.

1) Validate  /opt/SecureSpan/Gateway/runtime/modules/lib/ has only 1 OpenIDConnectAssertion

2) If duplicates exist due to migration of custom assertions process etc... Remove the old duplicate version of OpenIDConnectAssertion.

3) Restart the gateway to reload the assertions.