Out of the box, the SCA runs only from a browser on the local CMS server machine. Special provisions must be made to create a secure network connection (SSL) before you can run it off a remote machine. Without SSL you will get the error message below:
This restriction safeguards you from unauthorized access to information managed by SCA. As you work through this chapter, you will see the list of options that can be configured and the effect each one has on the system. Should hackers sniff the network and get hold of unencrypted data passed over the wire, they might get information about your MCMS configuration including the username and password for the MCMS system account.
Additional security on the SCA is always a good thing. As far as possible, restrict access to just administrators who have local access to the server. Although it is not best practice, there are occasions where the need for remote access to the SCA arises.