Require authorization for SOAP requests [Updated in Security Center 1.3, 1.5, and 2.0]

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 1 minute de lecture

    • Use the glide.basicauth.required.soap property to designate if incoming SOAP requests should require basic authorization.

    More information

    Avertissement :
    This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.
    Attribute Description
    Property name glide.basicauth.required.soapglide.soap.require_ws_security
    Configuration type System Properties (/sys_properties_list.do)
    Category API and web service
    Purpose To enforce soap requests authorization.
    Recommended value true
    Security risk rating 8.1
    Functional impactThis remediation enforces a combination of authentication methods, in the form of basic authentication and system level access control.
    • It performs this authentication while retrieving data from tables/pages in the form of SOAP data on the instance.
    • It restricts any guest users who are currently accessing this data.
    • Create an account for a user who needs access to this content, with the necessary access control permissions.

    To learn more, see SOAP web service and MID Server authentication credentials and SOAP requests.
    Security risk (Medium) Without appropriate authorization configured on the data source SOAP requests, an unauthorized user can access sensitive content/data on the target instance.
    References Authentication

    To learn more about adding or creating a system property, see Add a system property.