Enable policy based session access for mobile [New in Security Center 1.5]

リリースバージョン: Australia

更新日 2026年03月12日

所要時間：3分

Use the The Zero Trust- Policy Based Session Access plugin to control if users authenticating through a mobile app will have their roles reduced.

The Zero Trust- Policy Based Session Access plugin enables security admins to reduce user access in a session based on parameters such as IP address, location, identify provider attributes, and user attributes with adaptive authentication policies. When this plugin is enabled or set to true, users authenticating through a mobile device will have their roles restricted according to the plugin's policies. Instance admins may wish to restrict high privileged access when users authenticate through a mobile device as it could indicate an unsafe environment for sensitive operations.

More information


Attribute	Description
Configuration name	glide.authenticate.session_access.mobile.enabled
Configuration type	System Properties (/sys_properties_list.do)
Data type	Boolean
Recommended value	true
Default value	true
Category	Access control
Security risk	Severity score: 4.7 CVSS score: Medium Security risk details: If this hardening setting is set to true, then policy based session access is enforced on the instance for mobile logins, and users that are not coming from a trusted environment, or are not using trusted devices will have their roles with reduced privileges. True is the secure setting. If this setting is configured to false, then policy based session access is disabled, and users will continue to have full roles including the high privileged roles like admin all the time.
Dependencies and prerequisites	None
Functional impact	If admin has configured the session access policy on the instance, then users will have their roles reduced after mobile login if they are not coming from a trusted environment or using a trusted device.
References	Adaptive authentication