ACL Manager

The ACL Manager's display area resembles the following display when no server connection exists:

You must connect to an SPD Server host machine before you can use the SPD Management utilities. The section Connecting to an SPD Server provides detailed instructions on connecting to an SPD Server host.

Click List ACL in the ACL Manager of the SAS Management Console window to display the ACL resources that have been defined.

The ACL Manager display contains the following components:

Owner - the resource owner. This field cannot be changed directly. To change a resource owner, delete the resource and then add a new one.

Resource - the resource name. This field cannot be changed directly. To change a resource name, delete the resource and then add a new one.

Type - the type of resource (for example, DATA, CATALOG, VIEW, or MDDB). The Type field cannot be changed directly. To change the Type value, delete the current resource and then add a new one.

Column- the column name, if the resource is limited by a column constraint. The column name cannot be changed directly. To change the column name, delete the existing resource and then add a new one.

Persist - a Boolean flag. When set to Yes, Persist indicates that the ACL resource definition continues to exist if the referenced resource is deleted. When the Persist setting is left blank, the ACL resource definition is deleted when the referenced resource is deleted.

Name - name of a user or group to which the Read, Write, Alter, and Control permissions are applied for this resource. Universal represents the default setting for all unnamed groups or users.

Read - if selected, the specified user/group has permission to read this resource.

Write - if selected, the specified user/group has permission to write to this resource.

Alter - if selected, the specified user/group has permission to alter this resource.

Control - if selected, the specified user/group has permission to modify permissions of other users and groups associated with this resource.

To add an ACL resource, click Add ACL in the ACL Manager of the SAS Management Console window, and then complete the values in the Add ACL window.

Resource - the name of the resource to add.

Column - the column restrictions for the resource to be added. If there are none, leave blank.

Type - the type of resource (for example, DATA, CATALOG, VIEW, or MDDB).

Persist a Boolean flag. When set to Yes, Persist indicates that the ACL resource definition continues to exist if the referenced resource is deleted. When the Persist setting is left blank, the ACL resource definition is deleted when the referenced resource is deleted.

Generic - select if the resource name is a generic name.

LIBNAME - select if the resource is a LIBNAME resource.

R, W, A, C - select the appropriate default and group permissions to grant Read, Write, Alter, and Control as appropriate.

Model - specify the name of another existing ACL resource for this ACL resource to be modeled after.

To delete an ACL resource, select any row in the ACL resource table and click Delete ACL. The ACL resource is removed and the list is automatically updated.

To add a user or group to an ACL resource, click Add ACL User in the ACL Manager. When the Add Acl User window opens, enter the User or group name, select the boxes that correspond to the default Read, Write, Alter, and Control permissions that you want to grant, and then click Add.

The user is added and the ACL listing is automatically updated. An individual user or group cannot be deleted from an ACL resource. To delete a user, delete the entire ACL resource, and then add it back in without the user.

Each ACL resource has at least one set of permissions called universal permissions. Universal permissions are the default permissions for the ACL resource if no other permissions are applied. If any group or user names exist that have permissions for the ACL resource, they will be displayed.

Each set of permissions has four attributes (Read, Write, Alter, Control). To enable the permission, simply select its box.

R, W, A, C - select the appropriate default and group permissions to grant Read, Write, Alter, and Control as appropriate.