Feedback

Author: sarahsanders-docker

content/manuals/security/faqs/single-sign-on/faqs.md

@@ -65,4 +65,5 @@ No. There are no specific firewall rules required for configuring SSO, as long a
 
 ### Does Docker use my IdP's default session timeout?
 
-Yes, Docker supports your IdP's default session timeout. You can configure this by setting a Docker session minutes SAML attribute. For more information, see [SSO attributes](/manuals/security/for-admins/provisioning/_index.md#sso-attributes).
+Yes, Docker supports your IdP's default session timeout using a custom SAML attribute.
+Instead of relying on the standard `SessionNotOnOrAfter` element from the SAML spec, Docker uses a custom `dockerSessionMinutes` attribute to control session duration. See [SSO attributes](/manuals/security/for-admins/provisioning/_index.md#sso-attributes) for more information.

content/manuals/security/for-admins/provisioning/_index.md

@@ -38,9 +38,7 @@ When a user signs in through SSO, Docker obtains several attributes from your Id
 - **Docker Org**: Optional. Specifies the organization the user belongs to
 - **Docker Team**: Optional. Defines the team the user belongs to within the organization
 - **Docker Role**: Optional. Determines the user's permission within Docker
-- **Docker session minutes**: Optional. Determine's the user's session limit.
-You can set the session minutes to support your IdP's default session timeout.
-The attribute must be a positive integer > 0.
+- **Docker session minutes**: Optional. Sets the duration of a user’s session before they must re-authenticate with their identity provider (IdP). The value must be a positive integer greater than 0.
 If this is attribute is not provided, by default:
     - Docker Desktop signs you out after 90 days, or 30 days of inactivity.
     - Docker Hub and Docker Home sign you out after 24 hours.