diff --git a/Configs & Servers/Linux/privacyIDEA.md b/Configs & Servers/Linux/privacyIDEA.md
index a1b562c..1eaff08 100644
--- a/Configs & Servers/Linux/privacyIDEA.md	
+++ b/Configs & Servers/Linux/privacyIDEA.md	
@@ -65,7 +65,8 @@ sudo pi-manage admin add nicole.rappe -e nicole.rappe@bunny-lab.io
 ## Log into the WebUI
 Assuming you created an `A` record in the DNS server pointing to the IP address of the privacyIDEA server, Navigate to https://auth.bunny-lab.io and sign in with your newly-created username and password.  (e.g. `nicole.rappe`)
 
-## Create a LDAP User ID Resolver
+## Connect to Active Directory
+### Create a LDAP User ID Resolver
 This is what will connect privacyIDEA to an LDAP backend to pull-down users for authentication in Active Directory.  Begin by navigating to "**Config > Users > New LDAP Resolver**"
 
 | **Field** | **Value** |
@@ -81,4 +82,12 @@ This is what will connect privacyIDEA to an LDAP backend to pull-down users for
 | Bind Password | `<Domain Admin Password for "nicole.rappe">` |
 
 - Click the "**Preset Active Directory**" button.
-- Click the "**Test LDAP Resolver**" button.
\ No newline at end of file
+- Click the "**Test LDAP Resolver**" button.
+
+### Create a Realm
+Now we need to create what is called a "Realm".  Users need to be in realms to have tokens assigned. A user, who is not member of a realm can not have a token assigned and can not authenticate.  You can combine several different User ID Resolvers (see UserIdResolvers) into a realm.  Navigate to "**Config > Realms**"
+
+| **Field** | **Value** |
+| :--- | :--- |
+| Realm Name | `Bunny-Lab` |
+| Resolver(s) | `BunnyLab-LDAP` |
\ No newline at end of file