Previous Page | Next Page

Security Tasks

Add Administrators

For accountability, we recommend that you establish individual metadata administrators rather than sharing the unrestricted SAS Administrator account.

  1. Log on to SAS Management Console as someone who has user administration capabilities (for example, sasadm@saspw).

  2. On the Plug-ins tab, select User Manager [icon] (in the foundation repository).

  3. Create a user definition for each administrator:

    1. Right-click and select New [arrow] User.

    2. On the General tab, enter a name.

      Note:   The administrator's internal user ID is based on this name, so it is a good idea to use a short identifier here.   [cautionend]

    3. On the Accounts tab, click Create Internal Account. In the New Internal Account dialog box, enter and confirm an initial password. Click OK.

      Note:   By initial policy, internal passwords must be at least six characters, don't have to include mixed case or numbers, and don't expire. If you want to force a password change on first use, set a password expiration period.  [cautionend]

    4. Click OK to save the new internal user.

  4. Provide privileges for each administrator:

    1. Right-click the SAS Administrators group and select Properties. On the Members tab, move the new users to the Current Members list. Click OK.

    2. (Optional) Right-click the Metadata Server: Unrestricted role and select Properties. On the Members tab, move the new user to the Current Members list. Click OK. To perform this step, you must be unrestricted.

      Note:   Step 4b establishes a single level of administrative privilege. If you omit step 4b for an administrator, that administrator can perform almost all metadata administrative tasks but is subject to all permission and capability requirements. See Main Administrative Roles.  [cautionend]

Here are some details and tips:

Previous Page | Next Page | Top of Page