Securing SAS Data

Registering the LIBNAME Domain

SPD Server data resides in domains. A domain is similar in structure to a directory. Your SPD Server administrator will configure your SPD Server domains when your userID is created.

ACL File Security

SPD Server uses access control lists (ACLs) and SPD Server user IDs to secure domain resources. You obtain your user ID and password from your SPD Server administrator.
SPD Server supports ACL groups, which are similar to UNIX groups. SPD Server administrators can associate an SPD Server user with as many as thirty-two different ACL groups.
ACL file security is turned on by default when an administrator starts an SPD Server. ACL permissions affect all SPD Server resources, including domains, tables, table columns, catalogs, catalog entries, and utility files. When ACL file security is enabled, SPD Server grants access rights only to the owner (creator) of an SPD Server resource. Resource owners can use PROC SPDO to grant ACL permissions to a specific group (ACL group) or to all SPD Server users.
The resource owner can use the following properties to grant ACL permissions to all SPD Server users:
READ
universal Read access to the resource (read or query)
WRITE
universal Write access to the resource (append to or update)
ALTER
universal Alter access to the resource (rename, delete, or replace a resource, and add or delete indexes associated with a table)
The resource owner can use the following properties to grant ACL permissions to a named ACL group:
GROUPREAD
group Read access to the resource (read or query)
GROUPWRITE
group Write access to the resource (append to or update)
GROUPALTER
group Alter access to the resource (rename, delete, or replace a resource, and add or delete indexes associated with a table)