Use the visual policy editor
The visual policy editor is an alternative way to edit the human JSON (HuJSON) syntax of the tailnet policy file with an interactive graphical user interface. You can switch between the visual editor and the JSON editor anytime. Changes you make using the visual editor sync with the JSON editor instantly.
You can use the visual policy editor for all tailnet policy file features, including:
- Access control policies (ACLs and grants)
- Tailscale SSH access rules
- Tests and SSH Tests
- Groups
- Tags
- IP sets
- Hosts
- Node attributes
- Device posture
- Auto approvers
When you create access control policies using the visual editor, it creates them in the tailnet policy file using grant syntax. If you edit existing access control policies that use ACL syntax, they are automatically converted to grant syntax.
Enable the visual policy editor
To use the visual policy editor, go to the Access controls page in the admin console. Then, use the toggle at the top of the page to switch between the Visual editor and JSON editor.
Use the visual policy editor with GitOps
If you manage your tailnet policy file using GitOps, the visual policy editor operates in a read-only capacity. You can use the visual editor to search, filter, and preview potential policy changes, but to make policy changes, you must commit them through your GitOps workflow. This restriction ensures that your version control system remains the single source of truth for your tailnet policy file.
Feedback
The visual policy editor is actively under development, with new features added regularly. Your feedback helps us prioritize improvements and identify issues. To share bug reports, feature requests, or general comments, select the feedback icon in the lower right corner of the screen to open the submission form. Our product team reviews all feedback.