An Open Server gateway needs a security session callback only if all of the following statements are true:
The Open Server is a gateway.
The gateway allows clients to connect using network-based user authentication.
The gateway wants to establish a direct security session between the gateway’s client and the remote server.
If not all of the above conditions apply, Client-Library provides a default callback that is adequate.