Prevent inactive users from logging in [New in Security Center 1.5]

  • Release version: Yokohama
  • Updated October 3, 2025
  • 1 minute to read

    • Configure this property to control if inactive users can authenticate on your instance.

    When the system property glide.authenticate.only.allow.active.user.login is not set to a value of true, users in the User [sys_user] table marked inactive can still login to the instance. Users may be marked inactive if they no longer have permission to login (such as during termination from a company). If the property is not set to true, then these users may still access the instance and any data they could previously access.

    Set the glide.authenticate.only.allow.active.user.login property value to the recommended value of true (recommended), to ensures the users in the User [sys_user] table marked inactive cannot log in to the instance and are locked out.

    More information

    Attribute Description
    Configuration name glide.authenticate.only.allow.active.user.login
    Configuration type System Properties (/sys_properties_list.do)
    Data type Boolean
    Recommended value true
    Default value true
    Category Access control
    Security risk
    • Severity score: 7.5
    • CVSS score: High
    • Security risk details: Not setting this property to the recommended value of true, could enable inactive users like a terminated employee to still be able to access the instance and any data.
    Dependencies and prerequisites None