SSLCERTLOC= System Option

Specifies the location of the digital certificate for the machine's public key. This is used for authentication.

Client: Optional
Server: Required
Valid in: Configuration file, OPTIONS statement, SAS System Options window, SAS invocation, SAS/CONNECT spawner command line
Category: Communications: Networking and Encryption
PROC OPTIONS GROUP= Communications
Operating environment: UNIX, z/OS
Tip: When additional encryption options are specified on the spawner command line, the options must be included in the -SASCMD value. The spawner does not automatically pass the encryption values. For detailed information, see SASCMD for your operating environment in SAS/CONNECT User’s Guide.
Examples: TLS for a SAS/CONNECT UNIX Spawner: Example

TLS on a z/OS Spawner on a SAS/CONNECT Server: Example

TLS for SAS/SHARE on UNIX: Example

Syntax
Syntax Description
Details

Syntax

SSLCERTLOC=“file-path

Syntax Description

file-path

specifies the location of a file that contains a digital certificate for the machine's public key. This is used by servers to send to clients for authentication.

Details

The SSLCERTLOC= option is required for a server. It is required at the client only if the SSLCLIENTAUTH option is specified at the server.
If you want the spawner to locate the appropriate digital certificate, you must specify both the -SSLCERTLOC and -SSLPVTKEYLOC options in the -SASCMD script.
The certificate must be PEM-encoded (base64). Under z/OS, the file must be formatted as ASCII and must reside in a UNIX file system. For more information, see Certificate File Formats.
Copyright © SAS Institute Inc. All Rights Reserved.