diff --git a/policy/modules/system/authlogin.if b/policy/modules/system/authlogin.if
index 7f21603..b193dd8 100644
--- a/policy/modules/system/authlogin.if
+++ b/policy/modules/system/authlogin.if
@@ -1368,13 +1368,23 @@ interface(`auth_manage_login_records',`
 
 ########################################
 ## <summary>
-##	Use nsswitch to look up uid-username mappings.
+##	Use nsswitch to look up user, password, group, or
+##	host information.
 ## </summary>
+## <desc>
+##	<p>
+##	Allow the specified domain to look up user, password,
+##	group, or host information using the name service.
+##	The most common use of this interface is for services
+##	that do host name resolution (usually DNS resolution).
+##	</p>
+## </desc>
 ## <param name="domain">
 ##	<summary>
 ##	Domain allowed access.
 ##	</summary>
 ## </param>
+## <infoflow type="both" weight="10"/>
 #
 interface(`auth_use_nsswitch',`