diff --git a/keycloak/enforce-otp-internal.md b/keycloak/enforce-otp-internal.md
index 125e1e8..5c1e730 100644
--- a/keycloak/enforce-otp-internal.md
+++ b/keycloak/enforce-otp-internal.md
@@ -29,7 +29,7 @@
    - **Digits**: `6`  
    - **Period**: `30` seconds  
    - **Algorithm**: `sha512`  
-   - **Look ahead window**: `1–2`  
+   - **Look ahead window**: `1-2`  
    - **Reusable token**: `off`
 
 Click **Save**.
@@ -74,7 +74,7 @@ With this enabled, internal users without an OTP configured will be prompted to
 > This makes `browser-internal-otp` the default Browser flow, so **internal (local) users** who log in with username/password must use OTP.
 
 **Important for external (Entra) users:**
-- Go to **Identity Providers → (Microsoft Entra)** and ensure **Post Login Flow / Post Broker Login Flow** is **None** (or a flow **without** OTP), so external users don’t get a Keycloak OTP prompt after IdP login.
+- Go to **Identity Providers → (Microsoft Entra)** and ensure **Post Login Flow / Post Broker Login Flow** is **None** (or a flow **without** OTP), so external users don't get a Keycloak OTP prompt after IdP login.
 
 ---