Tag: SAS Metadata Security

Promoting SAS Security Metadata (in Custom Repositories)

by  •  • Comments Off on Promoting SAS Security Metadata (in Custom Repositories)

Did you know that with SAS® 9.3 you can promote (export/import) SAS metadata packages containing users, groups, roles, and ACTs, just like you can with Jobs, Tables, Libraries, Stored Processes, Reports and Information Maps? I needed to do this myself…

Read more →

Protecting your Metadata Protections: Part 2

by  •  • Comments Off on Protecting your Metadata Protections: Part 2

In a guest post on blogs.sas.com in January, I wrote about protecting your metadata protections. In that post I said that “Ideally, a SAS® metadata security plan should address both ACT permissions and access to the Authorization Manager.”…

Read more →

Testing Direct Access to SAS Metadata Bound Libraries and Tables

by  •  • Comments Off on Testing Direct Access to SAS Metadata Bound Libraries and Tables

A little while ago, as part of the work on our recent Metacoda Plug-ins 3.0 R2 release, I used SAS® 9.3 M2 to set up a metadata bound library by following the useful instructions in the Setting Up a Metadata-Bound Library section of the SAS® …

Read more →

Sneak Peek at our new Effective Permissions Explorers

by  •  • Comments Off on Sneak Peek at our new Effective Permissions Explorers

This post is a sneak peek at a couple of effective permissions explorers that we are putting into the next version of our Metacoda Security Plug-ins. We’ll also be demoing these at the SAS Global Forum 2012 in Orlando next week, so if you’r…

Read more →

Login Reviewer: Finding Accounts with Stored Passwords

by  •  • Comments Off on Login Reviewer: Finding Accounts with Stored Passwords

In a previous post I mentioned how the Accounts tab in SAS® Management Console 9.3 now displays a blank in the password field when logins don’t have a stored password, and only displays ******** when there is a stored password. Compare this …

Read more →

Protecting the Unrestricted from Impersonation

by  •  • Comments Off on Protecting the Unrestricted from Impersonation

I was asked a very insightful question about SAS® metadata security this week. This question and the ensuing investigation means I’ll now consider the inclusion of protections for unrestricted users in my metadata security plans. Especially …

Read more →

Baseline Security Metadata for a new SAS® 9.3 Deployment

by  •  • Comments Off on Baseline Security Metadata for a new SAS® 9.3 Deployment

When I’m reviewing SAS® metadata security implementations, I find it useful to have baseline security metadata to refer to. This baseline documents the initial state of metadata security (ACTs, ACEs, users, groups, roles, capabilities, prote…

Read more →