Enable account recovery (Plugin Applicability: Multiple Provider Single Sign-On) [Updated in Security Center 1.3 and 1.5]
The glide.sso.acr.enabled property controls the account recovery feature.
This property controls the account recovery feature which binds the ability to bypass single sign-on to specifically designated administrators. If glide.sso.acr.enabled is not set to the recommended value of true, then the local interactive log-ins (username or password based) will be remain enabled when single sign-on is enabled on the instance. Eliminating local interactive log-ins reduces the potential for unauthorized access to the instance.
More information
| Attribute | Description |
|---|---|
| Property name | glide.sso.acr.enabled |
| Configuration type | System Properties (/sys_properties_list.do) |
| Category | Authentication |
| Purpose | Controls the account recovery by userid feature. |
| Recommended value | True (default) |
| Configuration type | Boolean |
| Security risk | Critical (Without this property enabled, users will not be allowed to recover their account by userid. |
| Security risk rating | 6.5 |
| References | See Account recovery (ACR) for additional information. |