From b2b0d790b6b5083e7cd1eb7b47687de3c1bd2ca3 Mon Sep 17 00:00:00 2001
From: sleto-it <31849787+sleto-it@users.noreply.github.com>
Date: Wed, 12 Feb 2020 20:16:04 +0100
Subject: [PATCH] docs: improve encryption section (#4745)

---
 wiki/content/enterprise-features/index.md | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/wiki/content/enterprise-features/index.md b/wiki/content/enterprise-features/index.md
index 98dfaf776fe..c62a667160c 100644
--- a/wiki/content/enterprise-features/index.md
+++ b/wiki/content/enterprise-features/index.md
@@ -402,12 +402,11 @@ To enable encryption, we need to pass a file that stores the data encryption key
 `--encryption_key_file`. The key size must be 16, 24, or 32 bytes long, and the key size determines
 the corresponding block size for AES encryption ,i.e. AES-128, AES-192, and AES-256, respectively.
 
-Here is an example encryption key file of size 16 bytes:
-
-*enc_key_file*
+You can use the following command to create the encryption key file (set _count_ equals to the
+desired key size):
 
 ```
-123456789012345
+dd if=/dev/random bs=1 count=32 of=enc_key_file
 ```
 
 ### Turn on Encryption
@@ -419,6 +418,9 @@ dgraph zero --my=localhost:5080 --replicas 1 --idx 1
 dgraph alpha --encryption_key_file "./enc_key_file" --my=localhost:7080 --lru_mb=1024 --zero=localhost:5080
 ```
 
+If multiple alpha nodes are part of the cluster, you will need to pass the `--encryption_key_file` option to
+each of the alphas.
+
 ### Bulk loader with Encryption
 
 Even before Dgraph cluster starts, we can load data using bulk loader with encryption feature turned on.