Use the glide.security.strict_elevate_privilege property to control whether roles marked as privileged must be manually elevated for the user to be granted the role's capabilities.

Set this property to true to add an extra layer of security validation when a privileged user elevates their role.

More information

Attribute	Description
Configuration name	glide.security.strict_elevate_privilege
Configuration type	System Properties (/sys_properties_list.do)
Data type	Boolean
Recommended value	true
Default value	true
Category	Access control
Security risk	Severity score: 6.7 CVSS score: Medium Security risk details: When glide.security.strict_elevate_privilege is set to false, roles marked as privileged are automatically elevated upon an admin user new session, and do not need to be manually elevated (with the exception of security_admin).
Dependencies and prerequisites	None
Functional impact	This property strictly requires admin role users to elevate privileges when needed.