Who Can Do What: Credential Requirements for SAS Management Console Tasks |
Use the following table to determine the group memberships, role memberships, and other criteria that enable users to perform tasks in the Metadata Manager plug-in in SAS Management Console:
Actions | Requirements1 | ||
---|---|---|---|
Centralized Administration Approach | Delegated Administration Approach | ||
Check the access state of the metadata server, metadata repositories, and repository manager | Membership in the SAS Administrators group | Membership in the Management Console: Advanced role. | |
Create, register, and delete custom repositories
Change a repository's properties, including the access mode, the location of users' folders, and mapping for notes and documents |
Membership in the SAS Administrators group | Membership in the Management Console: Advanced and Metadata Server: Operation roles, and WriteMetadata permission on the Root folder of the SAS Folders tree. | |
Stop, pause, or resume the metadata server | Membership in the SAS Administrators group | Membership in the Management Console: Advanced and Metadata Server: Operation roles. | |
Continue to use all functions of SAS Management Console when the metadata
server is paused to the Administration state
Analyze, repair, or upgrade metadata Initialize or unregister a custom repository |
Membership in the Metadata Server: Unrestricted role | ||
Add, initialize, register, unregister, and delete a foundation repository.2 | Membership in the SAS Administrators group, specification as an unrestricted user in adminUsers.txt, and an external user ID that can be authenticated on the metadata server host machine | ||
Use the Backup Wizard | Membership in the SAS Administrators group and credentials to start a workspace server. For additional requirements, see Using the Backup Wizard in SAS Management Console. | ||
1
These columns list minimum requirements. The Metadata Server:
Unrestricted role can be substituted for any of the roles and
groups that are specified here.
2 Deleting or unregistering the foundation repository makes the metadata server unusable. These actions should be taken only in special situations. |
As a best practice, users who are members of the SAS Administrators group should be defined as internal users (rather than external users) in metadata. For more information, and to understand what role memberships and permissions are derived from membership in this group, see About Adding Users to the SAS Administrators Group.
Copyright © 2011 by SAS Institute Inc., Cary, NC, USA. All rights reserved.