Usage Note 41983: You cannot log on with a local account when you connect to a SAS® Metadata Server that is configured to use direct LDAP authentication
If you run the SAS® Metadata Server in a Windows environment, and you configure the server to authenticate directly to an LDAP provider (not Microsoft Active Directory), then you cannot use local host accounts to connect to the SAS Metadata Server.
The Windows platform has the concept of domains built into its authentication mechanisms. As a result, the SAS® software has no way to distinguish between the authentication provider domain name and the Windows domain name. Consequently, SAS software is unable to direct the Windows system to authenticate the user ID as a local machine user, instead of a Windows domain user.
If your need for using a local host user ID is based on maintaining emergency back-up accounts for use in the event of an LDAP server outage, you should use internal SAS accounts (userid@saspw) for this purpose.
Note: In the UNIX environment, you can authenticate using local host accounts. Log on using the following convention: userid@host.
Operating System and Release Information
| SAS System | SAS Metadata Server | Microsoft® Windows® for 64-Bit Itanium-based Systems | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2003 Datacenter 64-bit Edition | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2003 Enterprise 64-bit Edition | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows XP 64-bit Edition | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft® Windows® for x64 | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2003 Datacenter Edition | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2003 Enterprise Edition | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2003 Standard Edition | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2003 for x64 | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows Server 2008 for x64 | 9.2 TS2M0 | 9.3 TS1M0 |
| Microsoft Windows XP Professional | 9.2 TS2M0 | 9.3 TS1M0 |
| Windows Vista | 9.2 TS2M0 | 9.3 TS1M0 |
| Windows Vista for x64 | 9.2 TS2M0 | 9.3 TS1M0 |
*
For software releases that are not yet generally available, the Fixed
Release is the software release in which the problem is planned to be
fixed.
You cannot log on with a local account when you connect to a SAS® Metadata Server that is configured to use direct LDAP authentication.
| Type: | Usage Note |
| Priority: | |
| Topic: | System Administration ==> Security ==> Authentication
System Administration ==> Security ==> Identity Management
System Administration ==> Servers ==> Metadata
|
| Date Modified: | 2011-05-10 14:32:07 |
| Date Created: | 2010-12-29 15:43:16 |
