Administering the Portal

Who Can Administer the Portal

The following table shows the recommended users who should have administrator rights and the type of permissions for each. Depending on the administrative tasks that you want to perform, you can log on to the SAS Information Delivery Portal as one of these users.

Note: Except as noted in the table, the permissions are configured during installation. You can verify the permissions for each user in SAS Management Console by looking at the authorization properties in the user's permission tree.

For an overview of user accounts and SAS administrator accounts, see “Understanding the State of Your System” in the SAS Intelligence Platform: System Administration Guide.

Users Who Administer the Portal

User Name or Function	Default Metadata User ID	What the User Administers	Required Metadata Permissions	What the Permissions Allow
SAS Administrator	sasadm	Creates and manages metadata on the SAS Metadata Server. This account should never be used to log on to the portal. This account should be used only for administering metadata in SAS Management Console.	All permissions	Unrestricted user
SAS Trusted User	sastrust a user who has WriteMetadata permission granted in the portal ACT. This user has full access to portal content. By default, the sastrust user is a Portal Administrator	This user has WriteMetadata permission granted in the portal ACT and has full access to portal content. By default, this user is a portal administrator. It must be used only to log on to the portal to modify or remove content that cannot be managed through a normal account. It should never be used as a content administrator.	(All portal content) - ReadMetadata - WriteMetadata	Unrestricted access to portal content; this account must be used cautiously.
Group content administrator	(varies)	Administers content with the group for which this user is administrator. The SAS administrator must manually configure permissions for a group content administrator. A group content administrator can be configured for the PUBLIC group. See Group Content Administrator.	(Group and personal content) - ReadMetadata - WriteMetadata	Create portal content and share it with the respective group. View, edit, share, unshare, and delete all content that has been granted access to or shared with the group, including content that others create.
Defined portal users	(varies)	Administer personal portal content, and perform tasks that are available from the portal's Customize and Options menus. The SAS administrator must manually define portal users. For more information, see SAS Management Console: Guide to Users and Permissions.	(Personal content only) - ReadMetadata - WriteMetadata	View any portal content that has been granted public access or access to a group to which this user belongs. Create, view, edit, and delete personal portal content.

By default, when you first install the portal, all users who can access the metadata server are members of the PUBLIC group. The preceding table does not list PUBLIC group members, however, because it is expected that you restrict the PUBLIC permissions when you set up security for your portal deployment. Actual administration should be reserved only for those users who are listed in the table.