Glossary
- access control template (ACT)
- a reusable named authorization pattern that can
be applied to multiple resources. An access control template consists
of a list of users and groups and indicates, for each user or group,
whether permissions are granted or denied.
- authorization
- the process of determining the permissions that
particular users have for particular resources. Authorization either
permits or denies a specific action on a specific resource, based
on the user's identity and on group memberships.
- capability
- an application feature that is under role-based
management. Typically, a capability corresponds to a menu item or
button. For example, a Report Creation capability might correspond
to a New Report menu item in a reporting application. Capabilities
are assigned to roles.
- credential
- evidence that is submitted to support a claim
of identity (for example, a user ID and password) or privilege (for
example, a passphrase or encryption key). Credentials are used to
authenticate a user.
- grid host
- the machine to which the SAS client makes an initial
connection in a SAS High-Performance Analytics application.
- group
- a collection of users who are registered in a
SAS metadata environment. A group can contain other groups as well
as individual users.
- Hadoop Distributed File System (HDFS)
- a portable, scalable framework, written in Java,
for managing large files as blocks of equal size. The files are replicated
across multiple host machines in a Hadoop cluster in order to provide
fault tolerance.
- libref (library reference)
- a SAS name that is associated with the location
of a SAS library. For example, in the name MYLIB.MYFILE, MYLIB is
the libref, and MYFILE is a file in the SAS library.
- metadata identity (identity)
- a metadata object that represents an individual
user or a group of users in a SAS metadata environment. Each individual
and group that accesses secured resources on a SAS Metadata Server
should have a unique metadata identity within that server.
- role (user role)
- a set of capabilities within an application that
are targeted to a particular group of users.
- SAS authentication
- a form of authentication in which the target SAS
server is responsible for requesting or performing the authentication
check. SAS servers usually meet this responsibility by asking another
component (such as the server's host operating system, an LDAP provider,
or the SAS Metadata Server) to perform the check. In a few cases (such
as SAS internal authentication to the metadata server), the SAS server
performs the check for itself. A configuration in which a SAS server
trusts that another component has pre-authenticated users (for example,
web authentication) is not part of SAS authentication.
- SAS data set (data set)
- a file whose contents are in one of the native
SAS file formats. There are two types of SAS data sets: SAS data files
and SAS data views.
- SAS Stored Process (stored process)
- a SAS program that is stored on a server and defined
in metadata, and which can be executed by client applications.
- SAS table
- the visual rendering of a SAS data set in tabular
format. See also SAS data set.
- SAS Workspace Server
- a SAS server that provides access to SAS Foundation
features such as the SAS programming language and SAS libraries.
- SASHDAT file format
- a SAS proprietary data format that is optimized
for high performance and computing efficiency. For distributed servers,
SASHDAT files are read in parallel. When used with the Hadoop Distributed
File System (HDFS), the file takes advantage of data replication for
fault-tolerant data access.
- stored process
- See SAS Stored Process.
- theme
- a collection of specifications (for example, colors,
fonts, and font styles) and graphics that control the appearance of
an application.
- unrestricted identity
- a user or group that has all capabilities and
permissions in the metadata environment due to membership in the META:
Unrestricted Users Role (or listing in the adminUsers.txt file with
a preceding asterisk).
- user role
- See role.
- web authentication
- a configuration in which users of web applications
and web services are verified at the web perimeter, and the metadata
server trusts that verification.
Copyright © SAS Institute Inc. All Rights Reserved.
Last updated: December 18, 2018