diff --git a/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-oidc-saas.mdx b/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-oidc-saas.mdx
index c0cf043b7daa4f..ea5af16f910635 100644
--- a/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-oidc-saas.mdx
+++ b/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-oidc-saas.mdx
@@ -54,7 +54,7 @@ Some SaaS applications provide the Redirect URL after you [configure the SSO pro
11.
-12.
+12.
13. Select **Next**.
diff --git a/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-saml-saas.mdx b/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-saml-saas.mdx
index 27f29364c72955..9a4496d35b6ae6 100644
--- a/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-saml-saas.mdx
+++ b/src/content/docs/cloudflare-one/applications/configure-apps/saas-apps/generic-saml-saas.mdx
@@ -50,7 +50,7 @@ If you are using Okta, Microsoft Entra ID (formerly Azure AD), Google Workspace,
11.
-12.
+12.
13. Select **Next**.
diff --git a/src/content/docs/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser.mdx b/src/content/docs/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser.mdx
index 17287bc06a7a8a..2d9026ad96133c 100644
--- a/src/content/docs/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser.mdx
+++ b/src/content/docs/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser.mdx
@@ -115,7 +115,7 @@ The DNS record does not need to point to an active destination IP address or hos
Ensure that only **Allow** or **Block** policies are present. **Bypass** and **Service Auth** are not supported for browser-rendered applications.
:::
-13.
+13.
14. Select **Next**.
diff --git a/src/content/partials/cloudflare-one/access/access-choose-idps.mdx b/src/content/partials/cloudflare-one/access/access-choose-idps.mdx
index bbed29249ff1e4..4af495d370156b 100644
--- a/src/content/partials/cloudflare-one/access/access-choose-idps.mdx
+++ b/src/content/partials/cloudflare-one/access/access-choose-idps.mdx
@@ -1,12 +1,21 @@
---
-{}
-
+params:
+ - appType
---
Configure how users will authenticate:
-1. Select the [**Identity providers**](/cloudflare-one/identity/idp-integration/) you want to enable for your application.
+
+-
+Select the [**Identity providers**](/cloudflare-one/identity/idp-integration/) you want to enable for your application.
+
+-
+(Recommended) If you plan to only allow access via a single IdP, turn on **Instant Auth**. End users will not be shown the [Cloudflare Access login page](/cloudflare-one/applications/login-page/). Instead, Cloudflare will redirect users directly to your SSO login event.
+
-2. (Recommended) If you plan to only allow access via a single IdP, turn on **Instant Auth**. End users will not be shown the [Cloudflare Access login page](/cloudflare-one/applications/login-page/). Instead, Cloudflare will redirect users directly to your SSO login event.
+{ props.appType === "rdp" ?
+(<> - WARP authentication identity is not supported for browser-based RDP and should remain turned off.
) :
+(<> - (Optional) Under WARP authentication identity, allow users to authenticate to the application using their WARP session identity.
)
+}
-3. (Optional) Under **WARP authentication identity**, allow users to authenticate to the application using their [WARP session identity](/cloudflare-one/connections/connect-devices/warp/configure-warp/warp-sessions/).
+
diff --git a/src/content/partials/cloudflare-one/access/self-hosted-app/generic-public-app.mdx b/src/content/partials/cloudflare-one/access/self-hosted-app/generic-public-app.mdx
index 1e0eb4a75d0904..e9d0b98bbebf1a 100644
--- a/src/content/partials/cloudflare-one/access/self-hosted-app/generic-public-app.mdx
+++ b/src/content/partials/cloudflare-one/access/self-hosted-app/generic-public-app.mdx
@@ -17,7 +17,7 @@ import { Render } from "~/components"
9.
-10.
+10.
11. Select **Next**.