Not every deployment needs security enabled. Proof of concept and possibly development environments come to mind as possible examples. The downloadable openshift ligthblue cartridge is and example of an unsecured deployment.
If you deployment does not require any authentication or authorization:
- do not deploy any container security modules for the REST API's
- deploy the unauthenticated versions of the managment applications: