Add integer requirements and extra step for SSO connect

sarahsanders-docker · sarahsanders-docker · commit 1f3fc28e6d33 · 2025-03-25T16:36:25.000-04:00
diff --git a/content/manuals/security/for-admins/provisioning/_index.md b/content/manuals/security/for-admins/provisioning/_index.md
@@ -38,7 +38,10 @@ When a user signs in through SSO, Docker obtains several attributes from your Id
 - **Docker Org**: Optional. Specifies the organization the user belongs to
 - **Docker Team**: Optional. Defines the team the user belongs to within the organization
 - **Docker Role**: Optional. Determines the user's permission within Docker
-- **Docker session minutes**: Optional. Determine's the user's session limit. You can set the session minutes to support your IdP's default session timeout. If this is attribute is not provided, by default:
+- **Docker session minutes**: Optional. Determine's the user's session limit.
+You can set the session minutes to support your IdP's default session timeout.
+The attribute must be a positive integer > 0.
+If this is attribute is not provided, by default:
     - Docker Desktop signs you out after 90 days, or 30 days of inactivity.
     - Docker Hub and Docker Home sign you out after 24 hours.
 
@@ -52,7 +55,7 @@ If your organization uses SAML for SSO, Docker retrieves these attributes from t
 | Docker Org (optional)	| `dockerOrg` |
 | Docker Team (optional) |	`dockerTeam` |
 | Docker Role (optional) |	`dockerRole` |
-| Docker session minutes (optional) | `dockerSessionMinutes` |
+| Docker session minutes (optional) | `dockerSessionMinutes`, must be a positive integer > 0 |
 
 ## What's next?
 
diff --git a/content/manuals/security/for-admins/single-sign-on/connect.md b/content/manuals/security/for-admins/single-sign-on/connect.md
@@ -78,9 +78,10 @@ The user interface for your IdP may differ slightly from the following steps. Re
     - Name ID format: `EmailAddress`
     - Application username: `Email`
     - Update application on: `Create and update`
-11. Select **Next**.
-12. Select the **This is an internal app that we have created** checkbox.
-13. Select **Finish**.
+11. Optional. Add SAML attributes. See [SSO attributes](/manuals/security/for-admins/provisioning/_index.md#sso-attributes) for a table of SSO attributes.
+12. Select **Next**.
+13. Select the **This is an internal app that we have created** checkbox.
+14. Select **Finish**.
 
 {{< /tab >}}
 {{< tab name="Entra ID SAML 2.0" >}}
@@ -94,8 +95,9 @@ The user interface for your IdP may differ slightly from the following steps. Re
 7. Enter the following values from Docker into their corresponding Azure fields:
     - Docker Entity ID: **Identifier**
     - Docker ACS URL: **Reply URL**
-8. Save configuration.
-9. From the **SAML Signing Certificate** section, download your **Certificate (Base64)**.
+8. Optional. Add SAML attributes. See [SSO attributes](/manuals/security/for-admins/provisioning/_index.md#sso-attributes) for a table of SSO attributes.
+9. Save configuration.
+10. From the **SAML Signing Certificate** section, download your **Certificate (Base64)**.
 
 {{< /tab >}}
 {{< tab name="Azure Connect (OIDC)" >}}
