diff --git a/shield/docs/public/reference.asciidoc b/shield/docs/public/reference.asciidoc
index cb57571bfdb..65fde4e4f52 100644
--- a/shield/docs/public/reference.asciidoc
+++ b/shield/docs/public/reference.asciidoc
@@ -188,7 +188,8 @@ The parameters listed in this section are configured in the `config/elasticsearc
 [options="header"]
 |======
 | Name                     | Default | Description
-| `shield.dls_fls.enabled` | `true`  | This setting can be used to completely disable document and field level security regardless of how roles are configured.
+| `shield.dls_fls.enabled` | `false`  | Set to `true` to enable document and field level security.
+You cannot submit `_bulk` update requests when document and field level security is enabled.
 |======
 
 
diff --git a/shield/docs/public/setting-up-field-and-document-level-security.asciidoc b/shield/docs/public/setting-up-field-and-document-level-security.asciidoc
index a6b2c7583fe..873693efb1c 100644
--- a/shield/docs/public/setting-up-field-and-document-level-security.asciidoc
+++ b/shield/docs/public/setting-up-field-and-document-level-security.asciidoc
@@ -8,6 +8,8 @@ Document level security permissions restrict access to particular documents with
 Field and document level permissions are specified separately, but a role can define both field and document level permissions.
 Field and document level security permissions can be configured on a per-index basis.
 
+IMPORTANT: Document and Field Level Security is disabled by default. Set `shield.dls_fls.enabled` to `true` in `elasticsearch.yml` to enable it. You cannot submit `_bulk` update requests when document and field level security is enabled.
+
 ==== Field Level Security
 
 To enable field level security, you specify the fields that each role can access in the `roles.yml` file.