CB server encrypt any traffic between client and server without client SSL configuration?

I was reading about the SSL/TLS Based client-server communication on the page

There is a line say that,

“For Couchbase clients released after version 2.0, Couchbase Server provides secure client-server communication that does not require configuration.”

So does it mean even without the configuration on the CB java client to use SSL (define sslenabled and keystore properties at cb connection), CB server could still encrypt any traffic between client and server with SSL that will not need any configuration? So does it mean the keystore configuration for the java client is somewhat optional?

I believe that line is just referring to CRAM-MD5 protection of the authentication credentials. The protection there isn’t very high. If you’re concerned with transport level security, I’d recommend setting up SSL proper.