I'm using a third party identity provider for authentication towards my own services.

After an user finishes authentication, my IdP returns an JWT access token. The question is: What is the better approach? Use that access token to authenticate against my own services or derive another access token. Are there any disadvantages of any of the above approaches?