Azure AD OIDC Authentication

rmsferreira · February 24, 2022, 11:48am

Hi, I possibly find the problem.

As the documentation on Microsoft

email
The reported email address for this user JWT, SAML MSA, Azure AD This value is included by default if the user is a guest in the tenant. For managed users (the users inside the tenant), it must be requested through this optional claim or, on v2.0 only, with the OpenID scope. This value is not guaranteed to be correct, and is mutable over time - never use it for authorization or to save data for a user.

On the jwtClaims that I return from Azure AD I see that the Email address come on “preferred_username” key.

Topic		Replies	Views
Azure AD OIDC integration Graylog Central (peer support)	3	1130	April 18, 2022
OIDC authentication fails because of missing email claim Graylog Central (peer support)	10	684	February 9, 2024
Connecting to Graylog using AzureAD Graylog Central (peer support) basic-configuration	4	1141	February 14, 2022
Unable to connect to Active Directory Graylog Central (peer support)	4	655	November 5, 2021
Integrate Graylog web interface to use Azure AD for SSO Graylog Add-ons	8	4610	December 28, 2021

Azure AD OIDC Authentication

Related Topics