From da1d42d1115f1d3fdb3c00110a8e59323bf21f58 Mon Sep 17 00:00:00 2001
From: Hitoshi Mitake <h.mitake@gmail.com>
Date: Mon, 20 Apr 2020 01:18:54 +0900
Subject: [PATCH] Documentation: note on password strength

---
 Documentation/op-guide/authentication.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/Documentation/op-guide/authentication.md b/Documentation/op-guide/authentication.md
index 13aaa37a8..51550d252 100644
--- a/Documentation/op-guide/authentication.md
+++ b/Documentation/op-guide/authentication.md
@@ -174,3 +174,5 @@ As of version v3.2 if an etcd server is launched with the option `--client-cert-
 As of version v3.3 if an etcd server is launched with the option `--peer-cert-allowed-cn` filtering of CN inter-peer connections is enabled.  Nodes can only join the etcd cluster if their CN match the allowed one.
 See [etcd security page](https://github.com/etcd-io/etcd/blob/master/Documentation/op-guide/security.md) for more details.
 
+## Notes on password strength
+`etcdctl` command line interface and etcd API don't check a strength (length, coexistence of numbers and alphabets, etc) of the password during creating a new user or updating password of an existing user. An administrator needs to care about a requirement of password strength by themselves.