Who Can Do What: Credential Requirements for SAS Management Console Tasks

About Adding Users to the SAS Administrators Group

When you add a user to the SAS Administrators group, the user derives the following memberships and permissions (if the group's initial settings have not been changed):

membership in the Metadata Server: Advanced role
membership in the Metadata Server: Operation role
membership in the Metadata Server: User Administration role. This role is required in order to perform most actions in the User Manager plug-in.
WriteMetadata permission on the Root folder of the SAS Folders tree
Administer permission on server metadata
ReadMetadata on server metadata in the SASMeta context

If you use a centralized (rather than delegated) approach to system administration, then the SAS Administrators group provides a convenient mechanism for enabling users to perform administrative tasks. Centralized administration means that a single administrative user (or a small group of users) performs all administrative functions for your SAS deployment, with no division of responsibility.

As a best practice, users who are members of the SAS Administrators group should be defined as internal users (rather than external users) in metadata whenever possible. For details about creating administrative users, see Add Administrators in the SAS Intelligence Platform: Security Administration Guide.

Top of Page