diff --git a/doc/man/man5/slurm.conf.5 b/doc/man/man5/slurm.conf.5
index 54eb1883d69865107ffed21ad01263bd9121fc6d..22831102c022c025a5b716745d10d261fc8551e0 100644
--- a/doc/man/man5/slurm.conf.5
+++ b/doc/man/man5/slurm.conf.5
@@ -346,7 +346,16 @@ value for this option is "YES" for Cray systems and "NO" for other system types.
 .TP
 \fBAuthAltTypes\fR
 Comma separated list of alternative authentication plugins that the slurmctld
-will permit for communication. Acceptable values at present include "auth/jwt".
+will permit for communication. Acceptable values at present include
+\fIauth/jwt\fR.
+
+\fBNOTE\fR: \fIauth/jwt\fR requires a jwt_hs256.key to be populated in the
+\fBStateSaveLocation\fR directory for \fBslurmctld\fR only. The jwt_hs256.key
+should only be visible to the SlurmUser and root. It is not suggested to place
+the jwt_hs256.key on any nodes but the controller running \fBslurmctld\fR.
+\fIauth/jwt\fR can be activated by the presence of the \fISLURM_JWT\fR
+environment variable.  When activated, it will override the default
+\fBAuthType\fR.
 
 .TP
 \fBAuthAltParameters\fR