Enforce security scope license and permit playbook [New in Security Center 1.5 and updated in 2.0]

  • Release version: Yokohama
  • Updated January 30, 2025
  • 1 minute to read

    • Use this property to determine if only the access control lists (ACLs) within the License and Permit plugin will be used in determining access to the scope, or if ACLs from all scopes will be considered.

    When the glide.enforce_security_scope.sn_gsm_lic_prmt property is set to the recommended value of true, then only ACLs within the License and Permit plugin are used to determine access to the scope. When this setting is configured to false, then License and Permit Playbooks data in scope master tables are exposed because ACLs from all scopes are granted access. To reduce data exposure, set glide.enforce_security_scope.sn_gsm_lic_prmt to the recommended value of true.

    More information

    Attribute Description
    Configuration name glide.enforce_security_scope.sn_gsm_lic_prmt
    Configuration type System Properties (/sys_properties_list.do)
    Data type boolean
    Recommended value true
    Default value true
    Category Access control
    Security risk
    • Severity score: 2.7
    • CVSS score: Low
    • Security risk details: Configuring this setting to the recommended value of true secures the License and Permit Playbooks data in scope master tables by considering only ACLs from sn_gsm_lic_prmt scope for granting access. Setting this to false exposes the License and Permit Playbooks data in scope master tables by considering the ACLs from all scopes for granting access. For example, the IT Administrator can access License and Permit Playbooks data when this setting is false.
    Dependencies and prerequisites None
    References