diff --git a/config.yaml b/config.yaml
index d50ceac1..5115af09 100644
--- a/config.yaml
+++ b/config.yaml
@@ -3,36 +3,33 @@ acmactivate:
   provisioningCert: 'your provisioning certificate'
   provisioningCertPwd: 'test'
 wifiConfigs:
-  - profileName: 'exampleWifiWPA2' # friendly name
+  - profileName: 'exampleWifiWPA2' # friendly name, alphanumeric only
     ssid: 'exampleSSID'
-    priority: 1
+    priority: 1 # must be unique across profiles
     authenticationMethod: 6
     encryptionMethod: 4
-    pskPassphrase: 'example123!@#'  # pskPassphrase can be provided in this file or a seoarate secrets file
-    ieee8021xProfileName: ''
+    pskPassphrase: 'example123!@#'  # SECRET: can be in this file, a secrets file, or user prompt
   - profileName: 'exampleWifiWPA' # friendly name
     ssid: 'exampleSSID'
-    priority: 2
+    priority: 2 # must be unique across profiles
     authenticationMethod: 4
     encryptionMethod: 4
-    pskPassphrase: ''  # pskPassphrase can be provided in this file or a seoarate secrets file
-    ieee8021xProfileName: ''
-  - profileName: 'exampleWifi8021xTLS' # friendly name
+    pskPassphrase: ''  # SECRET: can be in this file, a secrets file, or user prompt
+  - profileName: 'exampleWifi8021xTLS' # friendly name, alphanumeric only
     ssid: 'ssid'
-    priority: 2
+    priority: 3 # must be unique across profiles
     authenticationMethod: 7
     encryptionMethod: 4
-    pskPassphrase: ''
     ieee8021xProfileName: 'exampleIeee8021xEAP-TLS'
 ieee8021xConfigs:
   - profileName: 'exampleIeee8021xEAP-TLS'
     username: "exampleUserName"
-    authenticationProtocol: 0 #8021x profile (ex. EAP-TLS(0))
+    authenticationProtocol: 0 # Extensible Authentication Protocol (ex. EAP-TLS(0))
     clientCert: 'testClientCertString'
     caCert: 'testCaCertString'
-    privateKey: '' # private key can be provided in this file or a seoarate secrets file
+    privateKey: '' # SECRET: can be in this file, a secrets file, or user prompt
   - profileName: 'exampleIeee8021xMSCHAPv2'
     username: "exampleUserName"
-    password: "" # password can be provided in this file or a separate secrets file
-    authenticationProtocol: 2 #8021x profile (ex. EAP-TLS(0))
+    password: "" # SECRET: can be in this file, a secrets file, or user prompt
+    authenticationProtocol: 2 # Extensible Authentication Protocol (ex. EAP-TLS(0))
     caCert: 'testCaCertString'