(Not applicable to Online Data Proxy) All DCN requests are authorized by checking if the user making the request is in the “SUP DCN User” role within the security configuration of the request’s target package.
If your DCN user is not a "real" user, you may also consider using the PreconfiguredUserLoginModule as an alternative to HTTPS Basic.