When you add a user to the SAS Administrators group,
the user derives the following memberships and permissions (if the
group's initial settings have not been changed):
-
membership in the
Management
Console: Advanced role
-
membership in the
Metadata
Server: Operation role
-
membership in the
Metadata
Server: User Administration role. This role is required
in order to perform most actions in the User Manager plug-in.
-
WriteMetadata permission on the
Root folder of the SAS Folders tree
-
Administer permission on server
metadata
-
ReadMetadata on server metadata
in the SASMeta context
If you use a centralized (rather than delegated)
approach to system administration, then the SAS Administrators group
provides a convenient mechanism for enabling users to perform administrative
tasks. Centralized administration means that a single administrative
user (or a small group of users) performs all administrative functions
for your SAS deployment, with no division of responsibility.
As a best practice,
users who are members of the SAS Administrators group should be defined
as internal users (rather than external users) in metadata whenever
possible. For details about creating administrative users,
see Add Administrators in SAS Intelligence Platform: Security Administration Guide.