diff --git a/admin_manual/configuration_server/config_sample_php_parameters.rst b/admin_manual/configuration_server/config_sample_php_parameters.rst
index dce54117352..f6a9a3b0909 100644
--- a/admin_manual/configuration_server/config_sample_php_parameters.rst
+++ b/admin_manual/configuration_server/config_sample_php_parameters.rst
@@ -600,8 +600,10 @@ auto_logout
 	'auto_logout' => false,
 
 Enable or disable the automatic logout after session_lifetime, even if session
-keepalive is enabled. This will make sure that an inactive browser will be logged out
-even if requests to the server might extend the session lifetime.
+keepalive is enabled. This will make sure that an inactive browser will log itself out
+even if requests to the server might extend the session lifetime. Note: the logout is
+handled on the client side. This is not a way to limit the duration of potentially
+compromised sessions.
 
 Defaults to ``false``