Search Services can be installed with Mutual TLS which is not just used to encrypt data in transit, it is also used as an authentication mechanism between the repository and Search Services.
It is possible to deploy Alfresco Content Services without mutual TLS between the repository and Search Services, however this will expose internal APIs that give full access to the repository without authentication. In such a setup, it is critical to properly protect these APIs.
Note: This documentation is for Search Services when using Alfresco Content
Services Enterprise or Alfresco Content Services Community. There are some minor
differences in the capabilities of these two installation types but that is made
clear within the documentation.
You may choose to secure Search Services with SSL.
Note: When choosing to secure Search Services with SSL, be aware that there is a known issue when
using Solr 6 where the SSL truststore and keystore passwords are visible as text in the
Solr 6 process arguments. Alfresco recommends that you ensure the server running Solr 6
is security hardened and access is restricted to admin users only.
Important: Alfresco strongly recommends that you use
firewalls and other infrastructure means to ensure that the Search Services server is
not accessible from anything other than trusted hosts and/or users, and only on the
ports needed for Search Services.
You can download the Search Services installation file from Hyland Community. Click Product downloads, and then select the version of the product you require.