GitBook: [master] one page modified

Author: w-le

deployment/single-sign-on/configuring-acaengine-for-saml2.md

@@ -103,11 +103,14 @@ You will enter these details from Step 2 into ACAEngine Backoffice:
 
 ### Prerequisites
 
-1. **Issuer** \(also known as **Identifier**\): If your ID provider defines an Identifier instead of letting you define one, Update the ACAEngine auth settings to use the required Identifier. For example, Azure AD defines fixed identifiers in the form _"spn:00000000-0000-0000-0000-000000000000"_ where the 0 digits are a string generated by Azure AD.
+1. **Issuer** \(also known as **Identifier**\): If your ID provider defines an Identifier instead of letting you define one, Update the ACAEngine auth settings to use the required Identifier. 
+
+   For example, Azure AD defines fixed identifiers in the form _"spn:00000000-0000-0000-0000-000000000000"_  where the 0 digits are the _Application \(client\) ID_, found on the Overview page of the Azure AD Application.
+
 2. **IDP Target URL** \(also known as **Assertion URL**\): This is the url that ACAEngine redirects users to in order to login with your SAML2 ID provider
    * Azure AD URLs are often in the format: https://login.microsoftonline.com/**<tenant-ID>**/saml2
    * ADFS URLs are often in the format: https://adfs.myorganistaion.com/adfs/ls
-   * Auth0 URLs are often in the format: https://myorganistaion.auth0.com/samlp/ 
+   * Auth0 URLs are often in the format: https://myorganisation.auth0.com/samlp/ 
 
 ### Update Engine's new authentication settings