The authentication is based on WS-Security and requires all users to sign the requests using an X.509 certificate received from EAD. Type SERVICE_CONSUMPTION_CONSTRAINT