apitech
/
grafana
mirror of https://github.com/grafana/grafana
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Docs: Clarify when force_use_graph_api is required for Azure (#97844)

Browse Source
pull/97779/head^2
Vardan Torosyan 1 year ago committed by GitHub
parent 2182f4829e
commit 63d3cf93fe
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 0 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 2
      docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md

2
docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Unescape View File

@ -380,6 +380,8 @@ Entra ID does not emit the groups claim in the token and emits a group overage c
If Grafana receives a token with a group overage claim instead of a groups claim, If Grafana receives a token with a group overage claim instead of a groups claim,
Grafana attempts to retrieve the user's group membership by calling the included endpoint. Grafana attempts to retrieve the user's group membership by calling the included endpoint.
To ensure this functionality works correctly, you must enable [`force_use_graph_api`]({{< relref "./#force-fetching-groups-from-microsoft-graph-api" >}}) in your configuration.
{{% admonition type="note" %}} {{% admonition type="note" %}}
The 'App registration' must include the `GroupMember.Read.All` API permission for group overage claim calls to succeed. The 'App registration' must include the `GroupMember.Read.All` API permission for group overage claim calls to succeed.

Write Preview
Loading…
Cancel
Save