diff --git a/lsio/ldap-auth/docker-compose.yaml b/lsio/ldap-auth/docker-compose.yaml
index f008c82..1fb610d 100644
--- a/lsio/ldap-auth/docker-compose.yaml
+++ b/lsio/ldap-auth/docker-compose.yaml
@@ -13,11 +13,11 @@ services:
     image: ghcr.io/linuxserver/ldap-auth
     container_name: ldap-auth
     environment:
-      # Optionally define a custom fernet key, has to be base64-encoded 32-byte (only needed if container is frequently recreated, or if using multi-node setups, invalidating previous authentications)
+      # Optionally define a custom valid fernet key (only needed if container is frequently recreated, or if using multi-node setups, invalidating previous authentications)
       - FERNETKEY= # optional
-      # Point this to a certificate file to enable HTTP over SSL (HTTPS) for the ldap auth daemon
+      # Optionally point this to a certificate file to enable HTTP over SSL (HTTPS) for the ldap auth daemon
       - CERTFILE= # optional
-      # Point this to the private key file, matching the certificate file referred to in CERTFILE
+      # Optionally point this to the private key file, matching the certificate file referred to in CERTFILE
       - KEYFILE= # optional
     ports:
       # the port for ldap auth daemon
diff --git a/lsio/ldap-auth/docker-run.sh b/lsio/ldap-auth/docker-run.sh
index 52f6d46..d3eb08e 100644
--- a/lsio/ldap-auth/docker-run.sh
+++ b/lsio/ldap-auth/docker-run.sh
@@ -9,9 +9,9 @@
 source ./.env
 docker run -d \
   --name=ldap-auth \
-  -e FERNETKEY= `# optional` `# Optionally define a custom fernet key, has to be base64-encoded 32-byte (only needed if container is frequently recreated, or if using multi-node setups, invalidating previous authentications)` \
-  -e CERTFILE= `# optional` `# Point this to a certificate file to enable HTTP over SSL (HTTPS) for the ldap auth daemon` \
-  -e KEYFILE= `# optional` `# Point this to the private key file, matching the certificate file referred to in CERTFILE` \
+  -e FERNETKEY= `# optional` `# Optionally define a custom valid fernet key (only needed if container is frequently recreated, or if using multi-node setups, invalidating previous authentications)` \
+  -e CERTFILE= `# optional` `# Optionally point this to a certificate file to enable HTTP over SSL (HTTPS) for the ldap auth daemon` \
+  -e KEYFILE= `# optional` `# Optionally point this to the private key file, matching the certificate file referred to in CERTFILE` \
   -p 8888:8888 `# the port for ldap auth daemon` \
   -p 9000:9000 `# the port for ldap login page` \
   --restart unless-stopped \