Prevent inactive users from logging in [New in Security Center 1.5]

Washington DC Platform security

Release

washingtondc

ft:locale

en-US

ft:publication_title

Washington DC Platform security

ft:clusterId

psec

bundleId

psec

workflow

Platform

Prevent inactive users from logging in [New in Security Center 1.5]

Release version: Washingtondc

Updated February 14, 2024

1 minute to read

Configure this property to control if inactive users can authenticate on your instance.

Set the glide.authenticate.only.allow.active.user.login property value to true (recommended), this ensures the users in the sys_user table marked inactive cannot log in to the instance and are locked out.

If the setting is configured to false, then users may still access the instance and the data they previously had access to.

More information


Attribute	Description
Configuration name	glide.authenticate.only.allow.active.user.login
Configuration type	System Properties (/sys_properties_list.do)
Data type	boolean
Recommended value	true
Default value	true
Category	Access control
Security risk	Severity score: 7.5 CVSS score: High Security risk details: Not setting this property to the recommended value of true, could enable inactive users like a terminated employee to still be able to access the instance and any data.
Dependencies and prerequisites	None