LIBNAME user1d1 sasspds 'd1'
server=zztop.5162
user='user1'
password='spds123'
IP=YES ;
PROC PRINT data=user1d1.admin1_table2
(obs=10) ;
title
'read admin1_table2 by user1' ;
run ;
/* Test access for a user in group2 */
LIBNAME user2d1 sasspds 'd1'
server=zztop.5162
user='user2'
password='spds123'
IP=YES ;
PROC PRINT data=user2d1.admin1_table2
(obs=10) ;
title
'read admin1_table2 by user2' ;
run ;
Domain Security and Group Access
This section of code provides an overview of SPD Server domain security and group access
using PROC SPDO.
Permissions are often granted to a group of users rather than individual users. The example
below shows how to provide the different groups of users access to the domain owned by
the user ID "Admin", and then extends the access to the tables. This makes administration
both simpler and more secure. Admin1 is the owner of the domain and can determine access
to the resources. In the following example, PROC SPDO permits the following:
• Any user ID in admingrp receives read/write/alter access to the domain
• Any user ID in group1 or group2 receives read access to the domain
• Any user ID in group3 or group4 receives read/write access to the domain
LIBNAME d1 sasspds 'd1'
server=zztop.5162
user='admin'
password='spds123
IP=YES ;
PROC SPDO library=d1 ;
/* assign who owns the ACLs */
set acluser admin ;
/* add a LIBNAME ACL to d1 */
ACL Security Examples 177
