diff --git a/engine/context/aci-integration.md b/engine/context/aci-integration.md
index 1af60da4f9..3815783528 100644
--- a/engine/context/aci-integration.md
+++ b/engine/context/aci-integration.md
@@ -50,6 +50,20 @@ docker login azure
 
 This opens your web browser and prompts you to enter your Azure login credentials.
 
+Alternatively, you can log in without interaction (typically in 
+scripts or continuous integration scenarios), using an Azure Service
+Principal, with `docker login azure --client-id xx --client-secret yy --tenant-id zz`
+
+>**Note**
+>
+> Logging in through the Azure Service Provider obtains an access token valid 
+for a short period (typically 1h), but it does not allow you to automatically 
+and transparently refresh this token. You must manually re-login 
+when the access token has expired when logging in with a Service Provider. 
+
+You can also use the `--tenant-id` option alone to specify a tenant, if 
+you have several ones available in Azure.
+
 ### Create an ACI context
 
 After you have logged in, you need to create a Docker context associated with ACI to deploy containers in ACI. For example, let us create a new context called `myacicontext`: