I was looking through the security program and see a new option called Services. All of our groups are set up with the N/A option for all rights, and V11 appears to be working anyway. I looked at the documentation which explains how to grant rights. Is this something that does not affect the current client? Does it need to be configured or just left as it is for now?
When a service is called directly from the client authentication happens through a different mechanism. What you are seeing in Security is a way to control security on each service exposure when it is called outside of the client application. So, for example, if you wanted to use a service exposure from your website, you would have to grant appropriate permissions there.