diff --git a/doc/source/security/kubernetes/create-ldap-linux-accounts.rst b/doc/source/security/kubernetes/create-ldap-linux-accounts.rst
index 6ea881a76..4b77c7050 100644
--- a/doc/source/security/kubernetes/create-ldap-linux-accounts.rst
+++ b/doc/source/security/kubernetes/create-ldap-linux-accounts.rst
@@ -15,6 +15,16 @@ Create LDAP Linux Accounts
     allowed to |SSH| to the nodes of the |prod|. Non-admin level users should
     strictly use remote CLIs or remote web GUIs.
 
+.. note::
+
+    In a |prod-dc| system configuration, the :command:`ldapusersetup` command
+    and other |LDAP| commands that are used to update data on the |LDAP|
+    server, are supported only on System Controller. These commands are not
+    supported on subclouds. This is because bind with password file is
+    supported only from System Controller. On subclouds, only bind anonymously
+    to the |LDAP| server is supported, thus, only the commands that read
+    information can be executed.
+
 The :command:`ldapusersetup` command provides an interactive method for setting
 up |LDAP| Linux user accounts.