Previous Page | Next Page

Who Can Do What: Credential Requirements for SAS Management Console Tasks

Who Can Do What in the Metadata Manager Plug-in

Use the following table to determine the group memberships, role memberships, and other criteria that enable users to perform tasks in the Metadata Manager plug-in in SAS Management Console:

Who Can Do What in the Metadata Manager Plug-in
Actions Requirements1
Centralized Administration Approach Delegated Administration Approach
Check the access state of the metadata server, metadata repositories, and repository manager Membership in the SAS Administrators group Membership in the Management Console: Advanced role.
Create, register, and delete custom repositories


Change a repository's properties, including the access mode, the location of users' folders, and mapping for notes and documents

Membership in the SAS Administrators group Membership in the Management Console: Advanced and Metadata Server: Operation roles, and WriteMetadata permission on the Root folder of the SAS Folders tree.
Stop, pause, or resume the metadata server Membership in the SAS Administrators group Membership in the Management Console: Advanced and Metadata Server: Operation roles.
Continue to use all functions of SAS Management Console when the metadata server is paused to the Administration state


Analyze, repair, or upgrade metadata

Initialize or unregister a custom repository

Membership in the Metadata Server: Unrestricted role
Add, initialize, register, unregister, and delete a foundation repository.2 Membership in the SAS Administrators group, specification as an unrestricted user in adminUsers.txt, and an external user ID that can be authenticated on the metadata server host machine
Use the Backup Wizard Membership in the SAS Administrators group and credentials to start a workspace server. For additional requirements, see Using the Backup Wizard in SAS Management Console.
1 These columns list minimum requirements. The Metadata Server: Unrestricted role can be substituted for any of the roles and groups that are specified here.

2 Deleting or unregistering the foundation repository makes the metadata server unusable. These actions should be taken only in special situations.

As a best practice, users who are members of the SAS Administrators group should be defined as internal users (rather than external users) in metadata. For more information, and to understand what role memberships and permissions are derived from membership in this group, see About Adding Users to the SAS Administrators Group.

Previous Page | Next Page | Top of Page