The identity applications use HTML forms for authentication. As a result, user credentials are exposed during log in. We strongly recommend that you enable SSL to protect sensitive information. For more information, see Checklist for Ensuring SSL Connections.