Restrict performance monitoring access

Release version: Australia

Updated March 12, 2026

1 minute to read

Use the glide.security.diag_txns_acl property to control stats.do, threads.do, thread_pool_stats, and replication.do access from an unauthenticated connection.

If glide.security.diag_txns_acl is not set to the recommended value of true, then All users (authenticated or not) have access to diagnostic pages such as stats.do, xmlstats.do, threads.do and replication.do pages. These endpoints are intended to be used for monitoring instance health.

Ensure the property glide.security.diag_txns_acl is set to true.

More information


Attribute	Description
Configuration name	glide.security.diag_txns_acl
Configuration type	System Properties (/sys_properties_list.do)
Data type	Boolean
Recommended value	true
Default value	<none>
Fallback value	true
Category	Configuration
Security risk	Severity score: 5.3 CVSS rating: Medium Security risk details: Information exposed by performance monitoring endpoints may be useful to attackers.
Functional impact	None
Dependencies and prerequisites	None

To learn more about adding or creating a system property, see Add a system property.