SAS/SHARE Server Tasks

Task List

Note: All SAS/CONNECT—related information in this document has been moved to the SAS/CONNECT User’s Guide. For information related to using TCP/IP for SAS/CONNECT in a Windows operating environment, see Windows Operating Environment in SAS/CONNECT User's Guide.
  1. Configure the SAS/SHARE server.
  2. Configure SAS options and security programs and services (optional).
    • If the server is to run secured, specify the TCPSEC= option to require client authentication.
    • Assign user rights for a server that is to run secured.
    • Specify encryption service options to encrypt client/server data transfers.
  3. Specify the server.

Configuring the Server Service

Each server must be defined as a service in the SERVICES file on each node that a client will access. The SERVICES file is located in the directory where the TCP/IP software is installed. For details about editing the SERVICES file, see Configuring the Services File.
Example:
sassrv2   5011/tcp  # SAS/SHARE server 2 

Setting the TCPSEC Option to Require Client Authentication

To authenticate connecting clients, you must specify the value _SECURE_ in the TCPSEC= option to require that clients provide a user ID and a password that are valid on the server. For details about the TCPSEC= option, see SAS/SHARE Options Only .
Example:
options tcpsec=_secure_;

Assigning User Rights for a Server That Is Running Secured

If you use only SSPI for authentication, setting user rights is not necessary.
If you use the simulated logon method of authentication, the following user rights must be set at the server machine:
  • “Act as part of the operating system” for the server administrator
  • “Increase quotas” for the server administrator
  • “Replace process level tokens” for the server administrator
  • “Log on as batch job” for all clients who need to access to the server

Encrypting Data in Server/Client Transfers

If an encryption service is configured at the server, you can specify SAS options to encrypt data that a server transfers to a client. For example:
options netencrypt netencryptalgorithm=ssl;
The NETENCRYPT option specifies that all data transfers between a server and a client will be encrypted. SSL is the encryption service that is specified in the NETENCRYPTALGORITHM= option. For details about encryption, see Encryption in SAS, located in the Base SAS Help and Documentation.

Specifying TCP/IP as the Communications Access Method

TCP/IP is the default communications access method on Windows. You can omit specifying the access method in the COMAMID= option, and the TCP/IP communications access method is assumed, by default. If you choose to specify TCP/IP to connect to a server, you can use the COMAMID= option in an OPTIONS statement.
options comamid=tcp;
Alternatively, you can specify the COMAMID option in a SAS configuration file or in a SAS start-up command.

Specifying the Server

You must specify the name of the server in the SERVER= option in the PROC SERVER statement.
SERVER=server
server can be either a server-ID or a port number. The value for server-ID corresponds to the service that was configured in the SERVICES file. For details, see Configuring the Services File. port is the unique number that is associated with the service that is used for transferring data between a client and a server.
Precede the port number with two consecutive underscores.
Note: Do not space after the first underscore or the second underscore.
Examples:
proc server server=apex;
proc server server=_ _5000;
For details about SAS naming rules, see SAS Language Reference: Concepts. For details about the PROC SERVER statement, see the SAS/SHARE User's Guide.

SAS/SHARE Server Example

The following example shows the statements that you specify in a SAS session at the machine where the server runs. The TCP/IP access method is specified and the server SHARE1 is started on the Windows machine.
options comamid=tcp;
proc server id=share1 authenticate=required;
run;