From ced0e98f6be1503f8d8069cf29700c3d4c81326c Mon Sep 17 00:00:00 2001
From: Nathan Jones <nathan.jones@docker.com>
Date: Wed, 8 Aug 2018 18:06:11 -0400
Subject: [PATCH] note about sha512WithRSAEncryption

Added note about support for sha512WithRSAEncryption per https://github.com/docker/escalation/issues/745#issuecomment-411543022
---
 ee/ucp/admin/configure/external-auth/index.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/ee/ucp/admin/configure/external-auth/index.md b/ee/ucp/admin/configure/external-auth/index.md
index 05d005d30f..562ff48b5b 100644
--- a/ee/ucp/admin/configure/external-auth/index.md
+++ b/ee/ucp/admin/configure/external-auth/index.md
@@ -141,6 +141,8 @@ Click **Yes** to enable integrating UCP users and teams with LDAP servers.
 | No simple pagination  | If your LDAP server doesn't support pagination.                                                                                                                           |
 | Just-In-Time User Provisioning | Whether to create user accounts only when users log in for the first time. The default value of `true` is recommended. If you upgraded from UCP 2.0.x, the default is `false`. |
 
+> **Note:** LDAP connections using certificates created with TLS v1.2 do not currently advertise support for sha512WithRSAEncryption in the TLS handshake which leads to issues establishing connections with some clients. Support for advertising sha512WithRSAEncryption will be added in UCP 3.1.0.  
+
 ![](../../../images/ldap-integration-1.png){: .with-border}
 
 Click **Confirm** to add your LDAP domain.