Authentication is the act of verifying the identity of the user who is attempting to access a machine—that
is, the machine that either the
client session or the
server session runs on. Authentication is performed so that a machine can use the identity
information to make decisions about the user's authority to access protected resources.
Under Windows, the user ID, password, and access permissions make up a
user context.
Resources on a SAS/CONNECT or a
SAS/SHARE server are considered to be protected when both of the following conditions are met:
-
The server requires that the client provide its identity.
-
The client presents an identity
that is successfully authenticated.
After the client's identity is authenticated, the client is given the appropriate
permissions to access the server's resources.
Under Windows, two methods
are available for authenticating a client's identity: