Problem Note 10961: SASĀ® servers do not honor expired passwords when using C2 Enhanced
Security on Compaq Tru64 UNIX servers
A SAS client might access a remote SAS server (SAS/CONNECT®,
SAS® Integration Technologies, or SAS/SHARE®) when an expired password is
provided. This problem might occur if C2 Enhanced Security is enabled on
the Compaq Tru64 UNIX server, and the remote SAS server was started
using the SASAUTH authentication.
A hot fix is available that will correct this problem. This hot fix
includes an updated SASAUTH module and additional instructions. The
new SASAUTH module must be installed SETUID ROOT and SETGIF AUTH as
follows:
$> su root
$> cd !SASROOT/utilities/bin
$> chown root sasauth
$> chgrp auth sasauth
$> chmod 6775 sasauth
$> exit
On the Compaq Tru64 UNIX server, after applying the additional
instructions, a listing of SASAUTH should now look like this:
-rwsrwsr-x 1 root auth 34432 Jun 18 21:08 sasauth
There are two differences for configuring SASAUTH on Compaq Tru64 UNIX
than from other UNIX platforms:
- The group is "auth" instead of "root".
- There is an "s" instead of an "x" in the SETGID bit position.
Select the Hot Fix tab in this note to access the hot fix for this issue.
ATTENTION (1): If you are using the sasauth authentication module with
the SAS Integration Technologies object spawner, then you must also install
hot fix 82IH15.
ATTENTION (2): If you are using the sasauth authentication module with
the SAS/CONNECT job spawner, then you must also install hot fix 82BB95.
Operating System and Release Information
| SAS System | Base SAS | Tru64 UNIX | 8.2 TS2M0 | 9.1 TS1M3 |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
| Type: | Problem Note |
| Priority: | high |
| Date Modified: | 2004-05-13 10:44:42 |
| Date Created: | 2003-10-01 09:25:30 |
