VCS uses the Symantec Product Authentication Service to provide secure communication between cluster nodes and clients, including the Java and the Web consoles. VCS uses digital certificates for authentication and uses SSL to encrypt communication over the public network.
In secure mode:
VCS requires a system in your enterprise to be configured as a root broker. Additionally, all nodes in the cluster must be configured as authentication brokers.
For secure communication, VCS components acquire credentials from the authentication broker that is configured on the local system. The acquired certificate is used during authentication and is presented to clients for the SSL handshake.
VCS and its components specify the account name and the domain in the following format:
For instructions on how to set up Security Services while setting up the cluster, see the Veritas Cluster Server Installation Guide.
You can also enable and disable Security Services manually
See Enabling and disabling Security Services.