Remove certificate mention from Azure AD manual (#6954)

* Remove certificate mention from Azure AD manual * Remove reference of eu * Code review comments * Change list to numbers due to bad redering with </div>
treeverse · Dec 10, 2023 · 901f033 · 901f033
1 parent 2f9d00a
commit 901f033
Showing 1 changed file with 7 additions and 4 deletions.
diff --git a/docs/reference/security/sso.md b/docs/reference/security/sso.md
@@ -103,8 +103,6 @@ Important: new app registrations are hidden to users by default. When you are re
 ### Add a secret
 Sometimes called an application password, a client secret is a string value your app can use in place of a certificate to identity itself.
 
-Client secrets are considered less secure than certificate credentials. Application developers sometimes use client secrets during local app development because of their ease of use. However, you should use certificate credentials for any of your applications that are running in production.
-
 Steps:
 1. In the Azure portal, in App registrations, select your application.
 2. Select Certificates & secrets > Client secrets > New client secret.
@@ -120,7 +118,7 @@ A redirect URI is the location where the Microsoft identity platform redirects a
 
 You add and modify redirect URIs for your registered applications by configuring their platform settings.
 
-Enter https://lakefs-cloud.us.auth0.com/login/callback or https://lakefs-cloud.eu.auth0.com/login/callback (depends on your organization data location) as your redirect URI.
+Enter https://lakefs-cloud.us.auth0.com/login/callback as your redirect URI.
 
 Settings for each application type, including redirect URIs, are configured in Platform configurations in the Azure portal. Some platforms, like Web and Single-page applications, require you to manually specify a redirect URI. For other platforms, like mobile and desktop, you can select from redirect URIs generated for you when you configure their other settings.
 
@@ -131,7 +129,12 @@ Steps:
 4. Under Configure platforms, select the web option.
 5. Select Configure to complete the platform configuration.
 
-Once you finish registering lakeFS Cloud with Azure AD, save the **Application (Client) ID**, **Application Secret Value** and send this to Treeverse's team to finish the integration.
+Once you finish registering lakeFS Cloud with Azure AD send the following items to the Treeverse's team:
+1. **Client ID**
+2. **Client Secret**
+3. **Azure AD Domain**
+4. **Identity API Version** (v1 for Azure AD or v2 for Microsoft Identity Platform/Entra) 
+
   </div>
 </div>