diff --git a/kbs/docs/self-signed-https.md b/kbs/docs/self-signed-https.md
index e278ba51f..034bf77b0 100644
--- a/kbs/docs/self-signed-https.md
+++ b/kbs/docs/self-signed-https.md
@@ -62,37 +62,38 @@ openssl pkey -in private.key -pubout -out public.pub
 Set up a `kbs-config.toml`
 ```bash
 cat << EOF > kbs-config.toml
+[http_server]
+sockets = ["0.0.0.0:8080"]
 private_key = "/etc/key.pem"
 certificate = "/etc/cert.pem"
+insecure_http = false
 
-sockets = ["0.0.0.0:8080"]
-
+[admin]
 auth_public_key = "/etc/public.pub"
 
-insecure_api = true
-
 [attestation_token]
 insecure_key = true
 
-[repository_config]
-type = "LocalFs"
-dir_path = "/opt/confidential-containers/kbs/repository"
+[policy_engine]
+policy_path = "/opa/confidential-containers/kbs/policy.rego"
 
-[as_config]
+[attestation_service]
+type = "coco_as_builtin"
 work_dir = "/opt/confidential-containers/attestation-service"
 policy_engine = "opa"
-rvps_store_type = "LocalFs"
 attestation_token_broker = "Simple"
 
-[as_config.attestation_token]
-duration_min = 5
+    [attestation_service.attestation_token_config]
+    duration_min = 5
 
-[as_config.rvps_config]
-store_type = "LocalFs"
-remote_addr = ""
+    [attestation_service.rvps_config]
+    remote_addr = ""
+    store_type = "LocalFs"
 
-[policy_engine_config]
-policy_path = "/opa/confidential-containers/kbs/policy.rego"
+[[plugins]]
+name = "resource"
+type = "LocalFs"
+dir_path = "/opt/confidential-containers/kbs/repository"
 EOF
 ```