SPD Server uses the
Name Server to secure its domains. SPD Server uses ACL file security
to secures domain resources. If ACL file security is enabled, the
SPD Server grants access in the following hierarchy:
-
uses the permissions that belong
to the UNIX ID that is associated with the SPD Server.
-
uses the permissions that belong
to the SPD Server user ID.
You can use SQL pass-through
and LIBNAME options to specify the identity of an SPD Server user.
SPD Server uses a special ID table to validate user IDs and passwords.
The following LIBNAME options identify a client:
specifies one to five
ACL groups that the user can belong to.
grants special privileges
to an SPD Server user who is previously set up as special. (ACLSPECIAL=YES
is defined for the user in the password file.) Special privileges
override other ACL restrictions that apply to resources in the domain.
prompts a client user
to change his or her SPD Server password.
NEWPASSWORD= or NEWPASSWD=
specifies a new password
for an SPD Server client user.
specifies a password
to validate an SPD Server client user.
prompts for a password
to validate an SPD Server client user.
specifies implicit
SQL pass-through options for an SPD Server client user.
specifies the SPD Server
user ID.
User ID Options When ACL File Security Is Enabled
|
|
|
Required unless the
SAS client process has a user ID. In other words, it is not a Windows
client. Submitted values for USER= are validated against the SPD Server
user ID table.
|
Required and validated
against the SPD Server user ID table.
|
Resources that you
create within the SPD Server LIBNAME domain and in other resources
that are not excluded by ACLs or by UNIX file permissions.
|
User ID Options When Only UNIX File Security Is Enabled
|
|
|
Not required. The SPD
Server user ID under only UNIX file security is anonymous.
|
Not required with anonymous
user ID.
|
All resources within
the LIBNAME domain granted by UNIX permissions for the SPD Server's
UNIX ID.
|