SAS/Config/Lev1/SASMeta/MetadataServer
and add lines such as these: /* Environment variables that describe your AD server */ -set AD_HOST myhost /* System options that make AD the primary authentication provider */ -authpd ADIR:company.com -primpd company.comYou can reference only one Active Directory server. You might choose to use a Windows domain name (for example,
ADIR:MyWinDomain
instead of ADIR:company.com
).
How the User ID Must
Be Stored in Metadata1
|
||
---|---|---|
1If the ID isn't stored in the correct format, the user can log on but has only the PUBLIC identity. Put the SAS copy of each user's ID in a login in that user's metadata definition. Assign these logins to DefaultAuth. |
/* Environment variables that describe your LDAP server */ -set LDAP_HOST myhost -set LDAP_BASE "ou=emp, o=us" /* System options that make LDAP the primary authentication provider */ -authpd LDAP:company.com -primpd company.comYou can reference only one LDAP server.
How the User ID Must
Be Stored in Metadata1
|
||
---|---|---|
1If the ID isn't stored in the correct format, the user can log on but has only the PUBLIC identity. Put the SAS copy of each user's ID in a login in that user's metadata definition. Assign these logins to DefaultAuth. |
Enable Secure Socket
Layer (SSL) encrypted communication between the metadata server and
the Active Directory server. Set this variable to 1 to activate (for
example,
-set AD_TLSMODE 1 ).1 |
|
The password for LDAP_PRIV_DN.
You can use the PWENCODE procedure to provide an encoded password.2
|
|
Enable Secure Socket
Layer (SSL) encrypted communication between the metadata server and
the LDAP server. Set this variable to 1 to activate (for example,
-set LDAP_TLSMODE 1 ).1 |
|
1Additional configuration is required. See How to Configure SSL between the Metadata Server and an LDAP Server. | |
2Set this variable only if users connect with a user ID instead of a DN, and the LDAP server does not allow anonymous binds. |
Use this option to register
and name your Active Directory provider or other LDAP provider. See AUTHPROVIDERDOMAIN System Option in SAS System Options: Reference.
|
|
Use this option to designate
your Active Directory server or other LDAP provider as the primary
authentication provider for the metadata server. The metadata server
directly uses its primary provider when the submitted user ID has
no qualifier, the -primpd qualifier, or an unrecognized qualifier.
Using this option enables users to log on using their usual user IDs
(no special qualifier is required at log on time). See PRIMARYPROVIDERDOMAIN= System Option in SAS System Options: Reference.
|