Create an ACT

  1. Access the Administration tab.
  2. From the Folders pane, navigate to SAS Foldersthen selectSystemthen selectSecuritythen selectAccess Control Templates.
  3. Right-click Access Control Templates and select New Access Control Template.
  4. In the New Access Control Template window, enter a name and description for the ACT. Click Save.
  5. Right-click the new ACT and click Open. The new ACT opens in its own tab.
  6. Click the Authorization tab, and then click Open Authorization Information. On the ACT Pattern tab:
    1. Click the plus icon. In the Add Identities window, select users and groups that will have explicit settings in the pattern. Click OK.
    2. On the ACT Pattern tab, click cells and make selections from the lists to define the ACT’s pattern.
      Note: For information about the icons and blank cells in an ACT's pattern, see Icons in Access Management.
  7. On the ACT's Authorization tabs, protect the new ACT. For example, one approach is to add an explicit denial of WriteMetadata for PUBLIC and an offsetting explicit grant of WriteMetadata for SAS Administrators.
    Note: It is important to prevent regular users from modifying or removing an ACT.
  8. Save the new ACT.
  9. To use the ACT, apply it to one or more objects.
    Note: The applied ACT contributes its pattern of access controls to the object's protections. The object can also have explicit controls and other applied ACTs (as well as inherited settings).
  10. If necessary, adjust the ACT's pattern. You can change the pattern of an ACT without modifying the objects to which the pattern is applied.
Copyright © SAS Institute Inc. All Rights Reserved.
Last updated: February 22, 2018