The <cluster-user> and <cluster-password> credentials are used to make connections between cluster nodes. These connections are used to move messages from one node to another for load-balancing purposes. However, they can technically be used by any remote client to connect to the server which is why you should change them from the default. In AS7 if you don't change the default cluster-password then a random UUID is used automatically to prevent any attacks out of the box.
I believe you can encrypt the password using the standard vault mechanism described here.
Can we apply security domain for cluster-user and cluster-password. I want to use a user from DB for this. Is it applicable?
If yes, how can I get this work? An example of configuration would be nice.
Thank a lot,
No, you can't "apply security domain for cluster-user and cluster-password."