Enforce ACL on HR Lifecycle Events Data [New in Security Center 2.0]

Zurich Platform security

Release

zurich

ft:locale

en-US

ft:publication_title

Zurich Platform security

ft:clusterId

psec

bundleId

psec

workflow

Platform

Enforce ACL on HR Lifecycle Events Data [New in Security Center 2.0]

Release version: Zurich

Updated July 31, 2025

1 minute to read

Learn how to prevent unauthorized access to data in the Human Resources Lifecycle Events application by verifying that the glide.enforce_security_scope.sn_hr_le property is set to the secured value.

The glide.enforce_security_scope.sn_hr_le property limits the access control lists (ACLs) of several HR tables so that only the "sn_hr_le" scope is considered. If glide.enforce_security_scope.sn_hr_le isn’t set to the recommended value of true, then the data from the Human Resources: Lifecycle Events application will be exposed to ACLs from all other scopes which could lead to unauthorized users accessing sensitive data. For example, an IT administrator gaining access to HR data.

Warning:

This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.

More information


Attribute	Description
Configuration name	glide.enforce_security_scope.sn_hr_le
Configuration type	System Properties (/sys_properties_list.do)
Data type	Boolean
Recommended value	true
Default value	false
Category	Access control
Security risk	Severity score: 6.5 CVSS score: Medium Security risk details: Not setting this property to the value of true, could cause the Human Resources: Lifecycle Events application data to be exposed to ACLs from all other scopes. This could lead to unauthorized users accessing sensitive data.
Dependencies and prerequisites	None