Client access is only allowed using REST over SSL (HTTPS), using unique self-signed certificates for each instance.
All access through Filr is turned off by default.
All Filr sharing is off by default.
User provisioning can be done via LDAP over SSL (LDAPS).
Filr supports replacing self-signed certificates with certificates that have been signed by a trusted certificate authority (CA).
All security-related credentials and passwords are encrypted with unique 2048-bit keys.
Communication between virtual machines is authenticated and encrypted.
The supported TLS version is TLS v1.2.
Perfect Forward Secrecy (PFS) is not supported with Filr.