Applying changes for #61089 (#64601) (#64605)

Adam Locke · web-flow · commit 1b9fe120d832 · 2020-11-04T13:45:55.000-05:00
diff --git a/x-pack/docs/en/security/authentication/saml-guide.asciidoc b/x-pack/docs/en/security/authentication/saml-guide.asciidoc
@@ -146,9 +146,12 @@ xpack.security.authc.realms.saml.saml1::
     See <<realms>> for more explanation of realms.
 
 order::
-    You should define a unique order on each realm in your authentication chain.
-    It is recommended that the SAML realm be at the bottom of your authentication
-    chain (that is, that it has the _highest_ order).
+    The order of the realm within the realm chain. Realms with a lower order
+    have highest priority and are consulted first. We recommend giving
+    password-based realms such as file, native, LDAP, and Active Directory the
+    lowest order (highest priority), followed by SSO realms such as SAML and
+    OpenID Connect. If you have multiple realms of the same type, give the most
+    frequently accessed realm the lowest order to have it consulted first.
 
 idp.metadata.path::
     This is the path to the metadata file that you saved for your Identity Provider.
