Groups and Group Membership

Predefined User Groups in SAS Decision Manager

About Groups

A group is a set of users. Groups enable you to grant multiple users membership in a role or permissions to metadata, thus simplifying security administration. You can create as many groups as are needed in order to manage your installation.

Tip

A group's membership can include other groups as well as individual users. This enables you to create a nested group structure.

Predefined User Groups in SAS Decision Manager

Predefined User Groups
Group	Description
Public	This group includes everyone who can access the metadata server, either directly or through a trust relationship. If a user is able to log on to a client application but does not have an individual SAS identity, the user is assumed to be in the public group. Because this group has implicit membership, you cannot explicitly add or remove users from this group.
SAS Users	This group includes everyone who can access the metadata server, either directly or through a trust relationship. If a user is able to log on to a client application but does not have an individual SAS identity, the user is assumed to be in the public group. Because this group has implicit membership, you cannot explicitly add or remove users from this group.
SAS Administrators	This is a standard group for metadata administrators. In a standard configuration, members are granted broad access and administrative capabilities, but are not unrestricted.
Decision Manager Common Administrators	This group has administrative permissions. Membership in this group is required to administer workflows. In your initial installation, this group is a member of the Decision Manager Common: Administration, Business Rules Manager: All Capabilities and Model Manager: Administration Usage roles.
Decision Manager Users	This group is created during the installation process. Members of this group have permission to read, add, or delete table summary information in the Data category. It is associated with the necessary identity in order to allow users to access the business rules database during rule flow execution. This group is the only group that is granted permission to publish business rules content to the SAS Content Server by default. Unless you make configuration changes, membership in this group is required for business rules users who do not have administrator permission.
Model Manager Administrator Users	This group has administrative permissions in the Projects and Portfolio categories.
Model Manager Advanced Users	This group has permissions to read, write, and delete content in the Projects and Portfolios categories.
Model Manager Users	This group has permission to read content in the Projects category.
SAS System Services	This group enables members to export files on the Folders tab of SAS Management Console.