diff --git a/src/pages/selfhosted/identity-providers.mdx b/src/pages/selfhosted/identity-providers.mdx
index ce9793c3..f7d45ac9 100644
--- a/src/pages/selfhosted/identity-providers.mdx
+++ b/src/pages/selfhosted/identity-providers.mdx
@@ -475,7 +475,9 @@ In this step, we will create OAuth2/OpenID Provider in Authentik.
     - Authorization Flow: `default-provider-authorization-explicit-consent (Authorize Application)`
     - Protocol Settings:
         - Client type: `Public`
-        - Redirect URIs/Origins (RegEx): `https://<domain>`, `https://<domain>.*`, `http://localhost:53000` (Each URI should be entered on a new line)
+        - Redirect URIs/Origins (RegEx):
+            - Regex: `https://<domain>/.*`
+            - Strict: `http://localhost:53000`
         - Signing Key: Must be selected! Can be any cert present, e.g. `authentik Self-signed Certificate`
     - Advanced protocol settings:
         - Access code validity: `minutes=10`
@@ -582,6 +584,8 @@ NETBIRD_AUTH_SUPPORTED_SCOPES="openid profile email offline_access api"
 NETBIRD_AUTH_AUDIENCE="<PROVIDER_CLIENT_ID>"
 NETBIRD_AUTH_DEVICE_AUTH_CLIENT_ID="<PROVIDER_CLIENT_ID>"
 NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE="<PROVIDER_CLIENT_ID>"
+NETBIRD_AUTH_REDIRECT_URI="/auth"
+NETBIRD_AUTH_SILENT_REDIRECT_URI="/silent-auth"
 
 NETBIRD_MGMT_IDP="authentik"
 NETBIRD_IDP_MGMT_CLIENT_ID="<PROVIDER_CLIENT_ID>"