Appian restricts communications between the engine servers and the application server(s) using a security token and a secure license. It is possible to run Appian without the token, which causes an error message to be logged.
Appian Engines are bound to your application server(s) using a security token.
The security token prevents unauthorized calls to the engines that might cause denial of service.
The security token can be any string of 256 characters (not simply alpha-numeric).
A default security token is automatically installed by the Appian setup program. The default security token (appian.sec) is a 256 character string of letters. All default tokens are identical.
appian.secfile, you will find the default token file in several directories. These do not need to be deleted or modified. The file placed in
appian.sectoken in the location listed above on each server in your instance, including servers that only run Appian engines. Security tokens on each server in an instance must be identical.