During a Security survey conducted for my customer, I was asked the following:
Is there any authentication occurring between Pega's application server and external services it accesses, specifically ElasticSearch for Search nodes and Cassandra for DDS nodes. I am of course referring to a "standard" deployment where both ElasticSearch and Cassandra and managed by Pega and not externally deployed.
We are running Pega 8.3.
Does anyone have any idea regarding this? Is there authentication ? Where this authentication info is stored, etc.?