diff --git a/configs/config.example.yml b/configs/config.example.yml
index 068d9b06..2fdfdd22 100644
--- a/configs/config.example.yml
+++ b/configs/config.example.yml
@@ -474,6 +474,9 @@ system:
 
         #
         # Voice Channels
+        # Note: This is a list, these parameters are used by a control channel to communicate back to a voice channel
+        # for authoritative voice channel control. (Additionally this list is used to define the voice channels that are 
+        # available for use by the host.)
         #
         voiceChNo:
               # Channel Identity (corresponds to the appropriate entry in the iden_table file).
diff --git a/configs/fne-config.example.yml b/configs/fne-config.example.yml
index 69512010..1d426807 100644
--- a/configs/fne-config.example.yml
+++ b/configs/fne-config.example.yml
@@ -229,6 +229,8 @@ master:
         file: key_container.ekc
         # Container password.
         password: "PASSWORD"
+        # Flag indicating whether or not the crypto container remove access is enabled.
+        remoteAccess: false
         # Remote access password for the crypto container.
         remoteAccessPassword: "PASSWORD"
         # Amount of time between updates of crypto container file. (minutes)
diff --git a/src/fne/CryptoContainer.cpp b/src/fne/CryptoContainer.cpp
index 601ecd51..1b7eac06 100644
--- a/src/fne/CryptoContainer.cpp
+++ b/src/fne/CryptoContainer.cpp
@@ -141,11 +141,12 @@ std::mutex CryptoContainer::s_mutex;
 
 /* Initializes a new instance of the CryptoContainer class. */
 
-CryptoContainer::CryptoContainer(const std::string& filename, const std::string& password, const std::string& remotePassword, 
-    uint32_t reloadTime, bool enabled) : Thread(),
+CryptoContainer::CryptoContainer(const std::string& filename, const std::string& password, 
+    const std::string& remotePassword, bool remoteAccessEnabled, uint32_t reloadTime, bool enabled) : Thread(),
     m_file(filename),
     m_password(password),
     m_remotePassword(remotePassword),
+    m_remoteAccessEnabled(remoteAccessEnabled),
     m_reloadTime(reloadTime),
     m_lastLoadTime(0U),
 #if !defined(ENABLE_SSL)
diff --git a/src/fne/CryptoContainer.h b/src/fne/CryptoContainer.h
index 4a50e284..b1629af3 100644
--- a/src/fne/CryptoContainer.h
+++ b/src/fne/CryptoContainer.h
@@ -168,10 +168,12 @@ public:
      * @param filename Full-path to the crypto container file.
      * @param password Crypto container file access password.
      * @param remotePassword Remote access password for the crypto container.
+     * @param remoteAccessEnabled Flag indicating if remote access is enabled.
      * @param reloadTime Interval of time to reload the crypto container.
      * @param enabled Flag indicating if crypto container is enabled.
      */
-    CryptoContainer(const std::string& filename, const std::string& password, const std::string& remotePassword, uint32_t reloadTime, bool enabled);
+    CryptoContainer(const std::string& filename, const std::string& password, 
+        const std::string& remotePassword, bool remoteAccessEnabled, uint32_t reloadTime, bool enabled);
     /**
      * @brief Finalizes a instance of the CryptoContainer class.
      */
@@ -257,16 +259,23 @@ public:
      * @return const std::string& Filename of this lookup table.
      */
     const std::string& filename() const { return m_file; }
+    
     /**
      * @brief Returns the remote access password for the crypto container.
      * @return const std::string& Remote access password.
      */
     const std::string& getRemotePassword() const { return m_remotePassword; }
+    /**
+     * @brief Returns the flag indicating whether or not the crypto container remote access is enabled.
+     * @return const bool True, if remote access is enabled, otherwise false.
+     */
+    const bool isRemoteAccessEnabled() const { return m_remoteAccessEnabled; }
 
 private:
     std::string m_file;
     std::string m_password;
     std::string m_remotePassword;
+    bool m_remoteAccessEnabled;
     uint32_t m_reloadTime;
 
     uint64_t m_lastLoadTime;
diff --git a/src/fne/HostFNE.cpp b/src/fne/HostFNE.cpp
index 245ec89d..8ccbd2ae 100644
--- a/src/fne/HostFNE.cpp
+++ b/src/fne/HostFNE.cpp
@@ -416,6 +416,7 @@ bool HostFNE::readParams()
     std::string cryptoContainerEKC = cryptoContainer["file"].as<std::string>();
     std::string cryptoContainerPassword = cryptoContainer["password"].as<std::string>();
     std::string cryptoContainerRemotePassword = cryptoContainer["remoteAccessPassword"].as<std::string>();
+    bool cryptoContainerRemoteAccess = cryptoContainer["remoteAccess"].as<bool>(false);
     uint32_t cryptoContainerReload = cryptoContainer["time"].as<uint32_t>(30U);
 
     std::string peerListLookupFile = systemConf["peer_acl"]["file"].as<std::string>();
@@ -458,8 +459,10 @@ bool HostFNE::readParams()
     LogInfo("    File: %s", cryptoContainerEKC.length() > 0U ? cryptoContainerEKC.c_str() : "None");
     if (cryptoContainerReload > 0U)
         LogInfo("    Reload: %u mins", cryptoContainerReload);
+    LogInfo("    Remote Access Enabled: %s", cryptoContainerRemoteAccess ? "yes" : "no");
 
-    m_cryptoLookup = new CryptoContainer(cryptoContainerEKC, cryptoContainerPassword, cryptoContainerRemotePassword, cryptoContainerReload, cryptoContainerEnabled);
+    m_cryptoLookup = new CryptoContainer(cryptoContainerEKC, cryptoContainerPassword, 
+        cryptoContainerRemotePassword, cryptoContainerRemoteAccess, cryptoContainerReload, cryptoContainerEnabled);
     m_cryptoLookup->read();
 
     return true;
diff --git a/src/fne/network/MetadataNetwork.cpp b/src/fne/network/MetadataNetwork.cpp
index a64b82ea..aae5a7ef 100644
--- a/src/fne/network/MetadataNetwork.cpp
+++ b/src/fne/network/MetadataNetwork.cpp
@@ -713,6 +713,11 @@ void MetadataNetwork::taskNetworkRx(NetPacketRequest* req)
 
             case NET_FUNC::KEYS_INVENTORY:                              // Encryption Key Container Inventory
                 {
+                    if (!network->m_host->m_cryptoLookup->isRemoteAccessEnabled()) {
+                        LogError(LOG_MASTER, "PEER %u requested enc. key inventory, but remote access is disabled, no response", peerId);
+                        break;
+                    }
+
                     lookups::PeerId peerEntry = network->m_peerListLookup->find(peerId);
                     if (peerEntry.peerDefault()) {
                         LogError(LOG_MASTER, "PEER %u requested enc. key inventory but is not allowed, no response", peerId);
@@ -895,6 +900,11 @@ void MetadataNetwork::taskNetworkRx(NetPacketRequest* req)
 
             case NET_FUNC::KEYS_UPDATE:                                 // Encryption Key Container Update
                 {
+                    if (!network->m_host->m_cryptoLookup->isRemoteAccessEnabled()) {
+                        LogError(LOG_MASTER, "PEER %u requested enc. key update, but remote access is disabled, no response", peerId);
+                        break;
+                    }
+
                     lookups::PeerId peerEntry = network->m_peerListLookup->find(peerId);
                     if (peerEntry.peerDefault()) {
                         LogError(LOG_MASTER, "PEER %u requested enc. key update but is not allowed, no response", peerId);