Specifies the location of the public certificate(s) for trusted certificate authorities (CA).
Client: | Required |
Server: | Optional |
Valid in: | Configuration file, OPTIONS statement, SAS System Options window, SAS invocation, SAS/CONNECT spawner command line |
Category: | Communications: Networking and Encryption |
PROC OPTIONS GROUP= | Communications |
Operating environment: | UNIX, z/OS |
Notes: | In the third maintenance release of SAS 9.4, the default path set for the SSLCALISTLOC= system option on UNIX and z/OS foundation servers is <SASHome>/SASSecurityCertificateFramework/1.1/cacerts/ trustedcerts.pem. The trustedcerts.pem file contains the list of trusted CA Certificates, the Mozilla Bundle provided by SAS at installation. |
In SAS 9.4, the first maintenance release of SAS 9.4, and the second maintenance release of SAS 9.4, the default path set for the SSLCALISTLOC= system option on UNIX and z/OS foundation servers is SAS-configuration-directory/Levn/certs/cacert.pem. The cacert.pem file contains the list of trusted CA Certificates. | |
Tip: | When additional encryption options are specified on the spawner command line, the options must be included in the -SASCMD value. The spawner does not automatically pass the encryption values. For detailed information, see SASCMD for your operating environment in SAS/CONNECT User’s Guide. |
See: | Certificate Locations. |
Examples: | TLS for a SAS/CONNECT UNIX Spawner: Example |
specifies the location of a single file that contains the public certificate(s) for all of the trusted certificate authorities (CA) in the trust chain.
SAS-configuration-directory/Levn/certs/cacert.pem
.
The cacert.pem file contains the list of trusted CA Certificates.
<SASRoot>/SASHome/SASSecurityCertificateFramework/1.1/cacerts/trustedcerts.pem
.
By default, the trustedcerts.pem file contains a managed set of trusted
root certificates provided by Mozilla. If additional CA certificates
are required, they can be added using the SAS Deployment Manager (SAS
Deployment Manager).