Is Remote Command Mode secure?

I can configure an XBee (pro-SX) using Remote AT Commands (via XCTU). Is this secure?

I couldn’t see anything in the user guide as to security regarding remote command mode.

Is there a way to disable it, or only enable when needed?

If I’ve setup up a network or XBees, what’s stopping someone else with XCTU from reconfiguring all my devices ?

Thanks, Brendan.

Only devices which are an existing part of network can send Remote Commands to each other.

If encryption is enabled then no other device can join network without knowledge of encryption key.

I had a feeling that encryption might be the answer.

So Remote Command mode is always available and there is not way to disable it ?

Right, Remote AT command cannot be disabled.