This is continuing compatibility where in-vm clients can perform actions without triggering management access control.

It would be nice also if we could find a way to make it possible to selectively disable this for cases where we want identity propagation between applications and the management tier.