From de06879e2a3041c75ea351cc5d6c18d1d9345f19 Mon Sep 17 00:00:00 2001 From: Ryan Elliott-Smith <49007005+ryanelliottsmith@users.noreply.github.com> Date: Fri, 1 Jul 2022 08:40:34 +1200 Subject: [PATCH] Update ADFS docs Clarify what the private key/certificate is used for in ADFS --- .../authentication/microsoft-adfs/rancher-adfs-setup/_index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/rancher/v2.5/en/admin-settings/authentication/microsoft-adfs/rancher-adfs-setup/_index.md b/content/rancher/v2.5/en/admin-settings/authentication/microsoft-adfs/rancher-adfs-setup/_index.md index 0a7d121412..0852b83e9c 100644 --- a/content/rancher/v2.5/en/admin-settings/authentication/microsoft-adfs/rancher-adfs-setup/_index.md +++ b/content/rancher/v2.5/en/admin-settings/authentication/microsoft-adfs/rancher-adfs-setup/_index.md @@ -44,7 +44,7 @@ After you complete [Configuring Microsoft AD FS for Rancher]({{}}/ranch | UID Field | An AD attribute that is unique to every user.

Example: `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn` | | Groups Field | Make entries for managing group memberships.

Example: `http://schemas.xmlsoap.org/claims/Group` | | Rancher API Host | The URL for your Rancher Server. | -| Private Key / Certificate | This is a key-certificate pair to create a secure shell between Rancher and your AD FS. Ensure you set the Common Name (CN) to your Rancher Server URL.

[Certificate creation command](#cert-command) | +| Private Key / Certificate | This is a key-certificate pair used for SAML assertion encryption, if enabled in your Relying Party Trust configuration. Ensure that you import the public certificate into your Relying Party Trust configuration and that you set the Common Name (CN) to your Rancher Server URL.

[Certificate creation command](#cert-command) | | Metadata XML | The `federationmetadata.xml` file exported from your AD FS server.

You can find this file at `https:///federationmetadata/2007-06/federationmetadata.xml`. |