The NSCA-ng server makes the Icinga command file accessible from remote systems. This allows for submitting passive check results, downtimes, and many other commands to Icinga.

The communication with clients is TLS encrypted and authenticated using pre-shared keys (as per RFC 4279). The NSCA-ng server supports per-client passwords and fine-grained authorization control.