diff --git a/doc/arm/Bv9ARM.ch06.html b/doc/arm/Bv9ARM.ch06.html
index 26f29d3c10..fadf671186 100644
--- a/doc/arm/Bv9ARM.ch06.html
+++ b/doc/arm/Bv9ARM.ch06.html
@@ -983,10 +983,12 @@
 <pre class="programlisting"><span class="command"><strong>controls</strong></span> {
    [ inet ( ip_addr | * ) [ port ip_port ]
                 allow { <em class="replaceable"><code> address_match_list </code></em> }
-                keys { <em class="replaceable"><code>key_list</code></em> }; ]
+                [ keys { <em class="replaceable"><code>key_list</code></em> } ]
+                [ read-only <em class="replaceable"><code>yes_or_no</code></em> ] ; ]
    [ inet ...; ]
    [ unix <em class="replaceable"><code>path</code></em> perm <em class="replaceable"><code>number</code></em> owner <em class="replaceable"><code>number</code></em> group <em class="replaceable"><code>number</code></em>
-     keys { <em class="replaceable"><code>key_list</code></em> }; ]
+                [ keys { <em class="replaceable"><code>key_list</code></em> } ]
+                [ read-only <em class="replaceable"><code>yes_or_no</code></em> ] ; ]
    [ unix ...; ]
 };
 </pre>
@@ -1047,6 +1049,16 @@
           See <a class="xref" href="Bv9ARM.ch03.html#rndc">Remote Name Daemon Control application</a> in <a class="xref" href="Bv9ARM.ch03.html#admin_tools" title="Administrative Tools">the section called &#8220;Administrative Tools&#8221;</a>)
           for information about configuring keys in <span class="command"><strong>rndc</strong></span>.
         </p>
+<p>
+          If the <span class="command"><strong>read-only</strong></span> clause is enabled, the
+          control channel is limited to the following set of read-only
+          commands: <span class="command"><strong>nta -dump</strong></span>,
+          <span class="command"><strong>null</strong></span>, <span class="command"><strong>status</strong></span>,
+          <span class="command"><strong>showzone</strong></span>, <span class="command"><strong>testgen</strong></span>, and
+          <span class="command"><strong>zonestatus</strong></span>. By default,
+          <span class="command"><strong>read-only</strong></span> is not enabled and the control
+          channel allows read-write access.
+        </p>
 <p>
           If no <span class="command"><strong>controls</strong></span> statement is present,
           <span class="command"><strong>named</strong></span> will set up a default
diff --git a/doc/arm/Bv9ARM.ch09.html b/doc/arm/Bv9ARM.ch09.html
index abc6e70525..81e3bbf0a7 100644
--- a/doc/arm/Bv9ARM.ch09.html
+++ b/doc/arm/Bv9ARM.ch09.html
@@ -485,6 +485,12 @@
 	  results in larger responses, but reduces CPU consumption and
 	  may improve throughput.  The default is <strong class="userinput"><code>yes</code></strong>.
 	</p></li>
+<li class="listitem"><p>
+	  A "read-only" clause is now available for non-destructive
+	  control channel access. In such cases, a restricted set of
+	  rndc commands are allowed for querying information from named.
+	  By default, control channel access is read-write.
+	</p></li>
 </ul></div>
 </div>
 <div class="section">
diff --git a/doc/arm/notes.html b/doc/arm/notes.html
index 492bc2cd8b..b319a358d6 100644
--- a/doc/arm/notes.html
+++ b/doc/arm/notes.html
@@ -446,6 +446,12 @@
 	  results in larger responses, but reduces CPU consumption and
 	  may improve throughput.  The default is <strong class="userinput"><code>yes</code></strong>.
 	</p></li>
+<li class="listitem"><p>
+	  A "read-only" clause is now available for non-destructive
+	  control channel access. In such cases, a restricted set of
+	  rndc commands are allowed for querying information from named.
+	  By default, control channel access is read-write.
+	</p></li>
 </ul></div>
 </div>
 <div class="section">