From 14a4090c3efee8db069510f7575cc8b8898c8847 Mon Sep 17 00:00:00 2001
From: Chris Hubing <chubing@internet2.edu>
Date: Thu, 4 Oct 2018 10:54:30 -0400
Subject: [PATCH] additional info

---
 README.md | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index b1b0f55..5656c65 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,14 @@
 # aws-saml-scripts
-Contains some scripts to integrate a SAML IDP with an AWS account and enable roles called administrator and readonly
+This repo will contain some scripts to integrate a SAML IDP with an AWS account and enable roles called administrator and readonly.
+This is only part of a two step process when integrating an AWS account with a SAML provider. The SAML IDP will still need to 
+be configured to release the appropriate attributes and values.
+
+
+# modify shibpolicy.json
+## change the AWS account number (123456789012) to the actual number
+## change the value after saml-provider/ to the name you want to call the IDP (a hostname is usually a good practice)
+# put the IDP metadata in idp.xml (right now, it contains the IDP metdata for login.at.internet.edu, the ICP SAML Proxy)
+# run the create script:
+## ICP integration: create_saml_aws.sh login.at.internet2.edu
+## or: create_saml_aws.sh idp_name
+