From be2b4faed2a4b3e439a4a72a2ac5efdc7b143a62 Mon Sep 17 00:00:00 2001
From: fred_the_tech_writer <69817454+fschillingeriv@users.noreply.github.com>
Date: Thu, 23 Dec 2021 12:28:09 -0500
Subject: [PATCH] pair of fixes from Jordan (#840)

---
 _articles/hosting/certificates.md          | 3 +--
 _articles/hosting/environment-variables.md | 2 +-
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/_articles/hosting/certificates.md b/_articles/hosting/certificates.md
index e55a7bd5..ae2c1e40 100644
--- a/_articles/hosting/certificates.md
+++ b/_articles/hosting/certificates.md
@@ -64,8 +64,7 @@ You may alternatively opt to use an existing SSL Certificate, which will require
 - A Private Key (`private.key`)
 - A CA Certificate (`ca.crt`)
 
-You may need to bundle your primary certificate with Intermediate CA certificates to prevent SSL trust errors. All CA Certificates should be included in the CA Certificate Chain file when using a Root CA and Intermediate CA certificate.
-
+You may need to bundle your primary certificate with Intermediate CA certificates to prevent SSL trust errors. All certificates should be included in the Server Certificate file when using a Root CA and Intermediate CA certificate.
 
 Under the default configuration, place your files in `./bwdata/ssl/your.domain`. You may specify a different location for your certificate files by editing the following values in `./bwdata/config.yml`:
 
diff --git a/_articles/hosting/environment-variables.md b/_articles/hosting/environment-variables.md
index 78f85a8d..0119931c 100644
--- a/_articles/hosting/environment-variables.md
+++ b/_articles/hosting/environment-variables.md
@@ -25,7 +25,7 @@ The following variables are among those that already exist in `global.override.e
 |--------|-----------|
 |globalSettings__sqlServer__connectionString=|Use this field to [connect to an exernal MSSQL database]({{site.baseurl}}/article/external-db/).|
 |globalSettings__oidcIdentityClientKey=|A randomly generated OpenID Connect client key. For more information, see [OpenID Documentation](https://openid.net/specs/openid-connect-registration-1_0.html#RegistrationResponse){:target="\_blank"}.|
-|globalSettings__duo__aKey=|A randomly generated Duo akey. For more information, see [Duo's Documentation](https://duo.com/docs/duoweb#1.-generate-an-akey){:target="\_blank"}.|
+|globalSettings__duo__aKey=|A randomly generated Duo akey. For more information, see [Duo's Documentation](https://duo.com/docs/duoweb-v2#1.-generate-an-akey){:target="\_blank"}.|
 |globalSettings__yubico__clientId=|Client ID for YubiCloud Validation Service or Self-hosted Yubico Validation Server.<br><br>If YubiCloud, get your Client ID and Secret Key [here](https://upgrade.yubico.com/getapikey/){:target="\_blank"}.<br><br>If self-hosted, see Optional Variable `globalSettings__yubico__validationUrls`.|
 |globalSettings__yubico__key=|Secret Key for YubiCloud Validation Service or Self-hosted Yubico Validation Server.<br><br>If YubiCloud, get your Client ID and Secret Key [here](https://upgrade.yubico.com/getapikey/){:target="\_blank"}.<br><br>If self-hosted, see Optional Variable `globalSettings__yubico__validationUrls`.|
 |globalSettings__mail__replyToEmail=|Email address used for invitations, typically `no_reply@smpt__host`.|