Enforce Security Scope for Service Application Information [New in Security Center 2.0]
- UpdatedJul 31, 2025
- 1 minute read
- Zurich
- Platform Security
Enforce Security Scope for Service Application Information [New in Security Center 2.0]
Use the glide.enforce_security_scope.sn_svc_appl property to ensure that the data in master scope tables is secured.
When the glide.enforce_security_scope.sn_svc_appl_info property is set to true, access to resources within the scope is determined solely by the access control lists (ACLs) from the Service Application Information plugin (sn_svc_appl_info). This ensures the security of data in master scope tables by restricting access permissions to those defined within the sn_svc_appl_info scope.
If set to the insecure value of false, ACLs from all scopes are considered when granting access to data in master scope tables such as sys_attachment. This could lead to unauthorized access to sensitive information by users who do not have permissions for the Service Application Information data.
More information
| Attribute | Description |
|---|---|
| Configuration name | glide.enforce_security_scope.sn_svc_appl_info |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | Boolean |
| Recommended value | true |
| Default value | false |
| Category | Access control |
| Security risk |
|
| Dependencies and prerequisites | The Service Applicant Information plugin (com.sn_svc_appl_info) must be activated for the glide.enforce_security_scope.sn_svc_appl_info property to be effective. |