Usage Note 36919: SAS® 9.2 SAS® Stored Processes use client credentials for SAS® Metadata Server access
In SAS® 9.2, the SAS® Stored Process Server uses
SAS Token Authentication. The invoking client user's credentials are passed to the SAS® Stored Process Server and used for all communication between the SAS Stored Process Server and the SAS® Metadata Server. This functionality is new in SAS 9.2.
In SAS® 9.13, all connections to the SAS Metadata Server from the SAS Stored Process Server were done using the sassrv account (SAS General Server login account) credentials. So, the sassrv account required extensive access to Metadata. In SAS 9.2, since client credentials are used for metadata access, you can restrict sassrv access and apply authorizations on all metadata objects to client user identities.
Operating System and Release Information
| SAS System | SAS Integration Technologies | Microsoft Windows Server 2003 Enterprise 64-bit Edition | 9.2 TS2M0 | |
| Microsoft Windows Server 2003 Datacenter 64-bit Edition | 9.2 TS2M0 | |
| Microsoft® Windows® for 64-Bit Itanium-based Systems | 9.2 TS2M0 | |
| z/OS | 9.2 TS2M0 | |
| Microsoft Windows XP 64-bit Edition | 9.2 TS2M0 | |
| Microsoft® Windows® for x64 | 9.2 TS2M0 | |
| Microsoft Windows Server 2003 Datacenter Edition | 9.2 TS2M0 | |
| Microsoft Windows Server 2003 Enterprise Edition | 9.2 TS2M0 | |
| Microsoft Windows Server 2003 Standard Edition | 9.2 TS2M0 | |
| Microsoft Windows XP Professional | 9.2 TS2M0 | |
| Windows Vista | 9.2 TS2M0 | |
| 64-bit Enabled AIX | 9.2 TS2M0 | |
| 64-bit Enabled HP-UX | 9.2 TS2M0 | |
| 64-bit Enabled Solaris | 9.2 TS2M0 | |
| HP-UX IPF | 9.2 TS2M0 | |
| Linux | 9.2 TS2M0 | |
| Linux for x64 | 9.2 TS2M0 | |
| OpenVMS on HP Integrity | 9.2 TS2M0 | |
| Solaris for x64 | 9.2 TS2M0 | |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
In SAS® 9.2, the SAS® Stored Process Server uses SAS Token Authentication. The invoking client user's credentials are passed to the Stored Process Server and used for all communication between the Stored Process Server and the SAS® Metadata Server.
| Date Modified: | 2009-09-04 15:27:54 |
| Date Created: | 2009-08-18 15:25:14 |
