Specifies the minimum TLS or SSL protocol that can be negotiated when using OpenSSL.
Client: | Optional |
Server: | Optional |
Valid in: | Configuration file, command line |
Categories: | Communications: Networking and Encryption |
System Administration: Security | |
Default: | TLS 1.2. Starting in the fourth maintenance release of SAS 9.4, the minimum OpenSSL protocol default is TLS 1.2. |
Operating environment: | UNIX, z/OS, and Windows |
Notes: | This environment variable must be set before TLS or SSL are loaded. It cannot be changed after TLS or SSL are loaded. You must set the environment variable before the SAS/CONNECT spawner is started and before SAS is started on the client. |
This environment variable is available in all SAS 9.3 and SAS 9.4 versions of software if hot fixes are applied. | |
Tip: | You can also define SET commands for Windows by using the System Properties dialog box that you access from the Control Panel. |
See: | Defining Environment Variables in UNIX Environments in SAS Companion for UNIX Environments, TKMVSENV File in SAS Companion for z/OS, Using Environment Variables in SAS Companion for Windows |
Examples: | Export the environment variable on UNIX hosts for
the Bourne Shell:export SAS_SSL_MIN_PROTOCOL=TLS1.2 |
Set the environment variable on UNIX hosts for the
C Shell environment: SETENV SAS_SSL_MIN_PROTOCOL TLS1.2 |
|
Set the environment variable at SAS invocation for
UNIX hosts:-set "SAS_SSL_MIN_PROTOCOL=TLS1.2" |
|
Set the environment variable on Windows hosts SET SAS_SSL_MIN_PROTOCOL=TLS1.2 |
specifies the minimum TLS protocol version that is negotiated between UNIX, z/OS, and Windows servers when using OpenSSL. Valid values for TLS 1.2 are TLS1.2 and TLSv1.2.