Enforce ACL on HR Core Data [New in Security Center 2.0]

Release version: Australia

Updated March 12, 2026

1 minute to read

Learn how to configure the glide.enforce_security_scope.sn_hr_core property so that the Human Resources Scoped App: Core (com.sn_hr_core) plugin does not expose sensitive data to access control lists (ACLs) from all other scopes.

The glide.enforce_security_scope.sn_hr_core property restricts the access control lists (ACLs) of several global data tables like sys_attachment and sys_email to only consider the sn_hr_core scope. If this property is not set to the recommended value of true, then data from the Human Resources Scoped App: Core plugin will be exposed to ACLs from all other scopes. For instance, this could result in the IT administrator gaining access to human resources data.

Warning:

This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.

More information


Attribute	Description
Configuration name	glide.enforce_security_scope.sn_hr_core
Configuration type	System Properties (/sys_properties_list.do)
Data type	Boolean
Recommended value	true
Default value	true
Category	Access control
Security risk	Severity score: 6.5 CVSS score: Medium Security risk details: If this property is not set to the secure value of true, then data from the Human Resources Scoped App: Core plugin will be exposed to ACLs from all other scopes.
Dependencies and prerequisites	None
References	Activate Case and Knowledge Management