41983 - You cannot log on with a local account when you connect to a SAS® Metadata Server that is configured to use direct LDAP authentication

Usage Note 41983: You cannot log on with a local account when you connect to a SAS® Metadata Server that is configured to use direct LDAP authentication

If you run the SAS^® Metadata Server in a Windows environment, and you configure the server to authenticate directly to an LDAP provider (not Microsoft Active Directory), then you cannot use local host accounts to connect to the SAS Metadata Server.

The Windows platform has the concept of domains built into its authentication mechanisms. As a result, the SAS^® software has no way to distinguish between the authentication provider domain name and the Windows domain name. Consequently, SAS software is unable to direct the Windows system to authenticate the user ID as a local machine user, instead of a Windows domain user.

If your need for using a local host user ID is based on maintaining emergency back-up accounts for use in the event of an LDAP server outage, you should use internal SAS accounts (userid@saspw) for this purpose.

Note: In the UNIX environment, you can authenticate using local host accounts. Log on using the following convention: userid@host.

Operating System and Release Information

Product Family	Product	System	SAS Release
Product Family	Product	System	Reported	Fixed*
SAS System	SAS Metadata Server	Microsoft® Windows® for 64-Bit Itanium-based Systems	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2003 Datacenter 64-bit Edition	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2003 Enterprise 64-bit Edition	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows XP 64-bit Edition	9.2 TS2M0	9.3 TS1M0
		Microsoft® Windows® for x64	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2003 Datacenter Edition	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2003 Enterprise Edition	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2003 Standard Edition	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2003 for x64	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows Server 2008 for x64	9.2 TS2M0	9.3 TS1M0
		Microsoft Windows XP Professional	9.2 TS2M0	9.3 TS1M0
		Windows Vista	9.2 TS2M0	9.3 TS1M0
		Windows Vista for x64	9.2 TS2M0	9.3 TS1M0

* For software releases that are not yet generally available, the Fixed Release is the software release in which the problem is planned to be fixed.

Type:	Usage Note
Priority:
Topic:	System Administration ==> Security ==> Authentication System Administration ==> Security ==> Identity Management System Administration ==> Servers ==> Metadata

Date Modified:	2011-05-10 14:32:07
Date Created:	2010-12-29 15:43:16

Support

Usage Note 41983: You cannot log on with a local account when you connect to a SAS® Metadata Server that is configured to use direct LDAP authentication

Operating System and Release Information