Require authorization for unload requests [Updated in Security Center 1.3]
Use the glide.basicauth.required.unl (useUnloadFormat) property to designate if incoming unload requests should require basic authentication.
More information
| Attribute | Description |
|---|---|
| Property name | glide.basicauth.required.unl |
| Configuration type | System Properties (/sys_properties_list.do) |
| Category | API and web service |
| Purpose | To enforce basic authentication on unload requests. |
| Recommended value | true |
| Security risk rating | 7.5 |
| Functional impact | This remediation enforces a combination of authentication methods, in the form of basic authentication and system level access control. It performs this authentication while retrieving data from tables/pages in the form of unload data on the instance. |
| Security risk | (High) Without appropriate authorization configured on the datasource unload requests, an unauthorized user can get access to sensitive content/data on the target instance. Ensure that glide.basicauth.required.unl exists in the sys_properties_table and is set to true. |
| References | Authentication |