File tree Expand file tree Collapse file tree 1 file changed +9
-1
lines changed
Expand file tree Collapse file tree 1 file changed +9
-1
lines changed Original file line number Diff line number Diff line change @@ -305,5 +305,13 @@ Entra ID is: `https://login.microsoftonline.com/<tenant-UUID>/v2.0`. The followi
305305- ` domain_hint: example.com ` to use your own domain
306306- ` prompt: select_account ` to force an account picker during login
307307
308- Groups for the [ allowed groups filter] ( #authorize-users-with-filters ) need to be specified with their group ID instead
308+ When using Microsoft Entra ID together with the [ allowed groups filter] ( #authorize-users-with-filters ) , configure the
309+ Headscale OIDC scope without the ` groups ` claim, for example:
310+
311+ ``` yaml
312+ oidc :
313+ scope : ["openid", "profile", "email"]
314+ ` ` `
315+
316+ Groups for the [allowed groups filter](#authorize-users-with-filters) need to be specified with their group ID(UUID) instead
309317of the group name.
You can’t perform that action at this time.
0 commit comments