Farm security options

When creating a new farm, you must decide which of these farm security options to use:
  • Service to service security
  • API security

Service to service security

Service to service security can be used for the (internal) communication between services and for infrastructure calls. Services listen only to services (processes) that are registered through the farm configuration service. The Service Expert can add services to a farm.

Select one of these options:

  • No security

    The service to service security relies only on the farm configuration.

  • SSL/TLS encryption

    Transport security of messages over the network.

API security

API security can be used for the public APIs such as Administration Service API. This option does not affect the authentication against the repository and the applications.

Select one of these options:

  • No security

    This option is recommended only for testing purposes.

  • OAuth

    Open Authorization, the OAuth 1.0a version is used for mutual trust between services.

  • Use SSL/TLS encryption

    Transport security of messages over the network.