SAS Safety 4.5` Manual

A SERVICE OF

next previous

pathname=/IDX1/spdsmgr/colsec

owner=boss ;

LIBNAME=onepath

pathname=/IDX1/spdsmgr/onepath ;

Password database List:

User Level Entry Type Group

-----------------------------------

ADMINGRP 0 GROUP ENTRY

GROUP1 0 GROUP ENTRY

GROUP2 0 GROUP ENTRY

GROUP3 0 GROUP ENTRY

GROUP4 0 GROUP ENTRY

PRODGRP 0 GROUP ENTRY

ADMIN1 7 user ID ADMINGRP

ADMIN2 7 user ID ADMINGRP

PROD1 7 user ID PRODGRP

PROD2 7 user ID PRODGRP

USER1 0 user ID GROUP1

USER2 0 user ID GROUP2

USER3 0 user ID GROUP3

USER4 0 user ID GROUP4

USER5 0 user ID GROUP1

USER6 0 user ID GROUP2

USER7 0 user ID GROUP3

USER8 0 user ID GROUP4

BOSS 7 user ID ADMINGRP

EMPLOYEE 0 user ID

Domain Security

When the libname.parm option OWNER= is specified, no other user can access the domain

unless the user is given permissions by the domain owner. Permissions to access a domain

are given using a LIBNAME ACL statement.

The code example below uses a LIBNAME ACL statement to give access permissions to

different groups.

LIBNAME d2 sasspds 'd2'

server=zztop.5162

user='prod1'

password='spds123'

IP=YES ;

/* Give permissions to LIBNAME */

PROC SPDO library=d2 ;

/* assign who owns the ACLs */

set acluser prod1 ;

/* Give specific groups access */

/* to the domain. */

168 Chapter 14 • ACL Security Overview