From 596896238f80b2c498ac1937eb0ab6a72b9c1ab6 Mon Sep 17 00:00:00 2001 From: dcfSec Date: Mon, 1 Dec 2025 16:29:34 +0100 Subject: [PATCH] Changes Group.Read.All to GroupMember.Read.All in docs --- .../en/customize_dojo/user_management/configure_sso.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/content/en/customize_dojo/user_management/configure_sso.md b/docs/content/en/customize_dojo/user_management/configure_sso.md index b66fa08dbf7..f8dc52ce949 100644 --- a/docs/content/en/customize_dojo/user_management/configure_sso.md +++ b/docs/content/en/customize_dojo/user_management/configure_sso.md @@ -133,7 +133,7 @@ The Azure AD token need to be configured to include Group IDs. Without this step To update the format of the token, add a [Group Claim](https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-fed-group-claims) that applies to whatever Group type you are using. If unsure of what type that is, select `All Groups`. Do not activate `Emit groups as role claims` within the Azure AD "Token configuration" page. -Application API permissions need to be updated with the `Group.Read.All` permission so that groups can be read on behalf of the user that has successfully signed in. +Application API permissions need to be updated with the `GroupMember.Read.All` permission so that groups can be read on behalf of the user that has successfully signed in. ##### Group Cleaning @@ -169,7 +169,7 @@ The Azure AD token returned by Azure will also need to be configured to include If unsure of what type that is, select `All Groups`. Do not activate `Emit groups as role claims` within the Azure AD "Token configuration" page. -Application API permissions need to be updated with the `Group.Read.All` permission so that groups can be read on behalf of the user that has successfully signed in. +Application API permissions need to be updated with the `GroupMember.Read.All` permission so that groups can be read on behalf of the user that has successfully signed in. To limit the amount of groups imported from Azure AD, a regular expression can be used as the following: