From dc69f8010b03c6081233c0434fbdcbdcb42231b0 Mon Sep 17 00:00:00 2001
From: keithhc2 <keithhc2@users.noreply.github.com>
Date: Mon, 27 Sep 2021 17:07:38 -0700
Subject: [PATCH] Added a setting to enable patch configuration

---
 _security-plugin/access-control/api.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/_security-plugin/access-control/api.md b/_security-plugin/access-control/api.md
index dd5604a3..2f4a6652 100644
--- a/_security-plugin/access-control/api.md
+++ b/_security-plugin/access-control/api.md
@@ -1159,6 +1159,12 @@ Introduced 1.0
 
 Updates the existing configuration using the REST API. This operation can easily break your existing configuration, so we recommend using `securityadmin.sh` instead, which is far safer. See [Access control for the API](#access-control-for-the-api) for how to enable this operation.
 
+Before you can execute the operation, you must first add the following line to `opensearch.yml`:
+
+```yml
+plugins.security.unsupported.restapi.allow_securityconfig_modification: true
+```
+
 #### Request
 
 ```json