AUTHLIB Procedure

PURGE Statement

Removes any retained metadata-bound library credentials older than a given date of replacement.

Requirement: The AUTHLIB PURGE statement requires a connection to the target metadata server. For more requirements, see Requirements for Using the AUTHLIB Statements.
Tip: Each password and encryption key option must be coded on a separate line to ensure that they are properly blotted in the log.

Syntax

Required Arguments

PW=all-password

specifies a single password for a metadata-bound library.

ALTER=alter-password

specifies one of a maximum of three password values for a metadata-bound library.

READ=read-password

specifies one of a maximum of three password values for a metadata-bound library.

WRITE=write-password

specifies one of a maximum of three password values for a metadata-bound library.

Tip
All password values must be valid SAS names with a maximum length of 8 characters.

BEFORE=datetime

specifies a datetime constant before any replaced, but retained, credentials are removed.

Optional Argument

LIBRARY=libref

name of the physical library for which the metadata-bound library is created and the security information is stored.

If the LIBRARY= option is not specified, then the physical library from the AUTHLIB procedure is used.

Alias LIB=, DDNAME=, DD=
Restriction The physical library specified cannot be a concatenated library, temporary library, or accessed through a SAS/SHARE server and must be processed by an engine that supports metadata-bound libraries.

Details

Using the PURGE Statement

Passwords and encryption keys for a metadata-bound library are collectively referred to as metadata-bound library credentials. For more information about purging metadata-bound library credentials, see Retaining and Purging Metadata-Bound Library Credentials.

Using the LIBRARY= Option

If you want to override the default library from the AUTHLIB procedure, then use LIBRARY= option.
PURGE CREDENTIALS <LIBRARY=library-name>
If you want to purge the credentials for a secured library object that is no longer bound to a physical library, then specify LIBRARY=_NONE_ with the SECUREDLIBRARY= and SECUREDFOLDER= options to locate the secured library object.
PURGE CREDENTIALS <LIBRARY=_NONE_ SECUREDLIBRARY=secured-library-name>
<SECUREDFOLDER=secured-folder-name>