Restrict access to background script [Updated in Security Center 1.3]

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • Configure the glide.script_processor.admin property to set the role required for accessing the Script Background module.

    This property holds the required role to access Script Background module. If glide.script_processor.admin is not set to the recommended value of admin, security_admin, or maint, then users having a lower privileged role will be able to run background scripts on the instance. This will lead to a complete bypass of the ACL system allowing full access to tables.

    Warning:
    This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.

    More information

    Attribute Description
    Configuration name glide.script_processor.admin
    Configuration type System Properties (/sys_properties_list.do)
    Data type string
    Recommended value admin
    Default value admin
    Category Access control
    Security risk
    • Severity score: 8.8
    • CVSS score: High
    • Security risk details: Not setting this property to the recommended value of admin lets any user run background scripts on the instance.
    Dependencies and prerequisites None