https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/574461#M16750 Hi <a href="https://communities.sas.com/t5/user/viewprofilepage/user-id/280986">@sas_tigress</a>,<BR /><BR />Are there any errors reported in the Metadata Server Logs while performing this action?<BR /><BR />Does the issue happen only during add/remove a user from metadata or any other metadata update as well?<BR /><BR />-AV Thu, 18 Jul 2019 06:19:02 GMT AnandVyas 2019-07-18T06:19:02Z https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/572232#M16674 <P>We have a WIndowsx64 SAS 9.4 TS1M5 setup. Recently upgraded to M6. One of the IT person(user) who is a part of the SAS Administrator group keeps getting this error when trying to add/remove a new user in SAS Management Console&nbsp;</P><P>&nbsp;</P><P>'The user does not have permission to perform this action.</P><P>- Not Authorized to add Login&nbsp; UserId=ataylor3, ObjId=A5OB9JNQ.AS0001QI, AuthDomain=OraAuth to Person Name=Ashley Taylor, ObjId=A5OB9JNQ.AP0000VD'.</P><P>&nbsp;</P><P>Strangely this user has right access/perms to Server1 which is a duplicate of Server2 (the problematic one where she doesn't have permissions). We've checked on the server level, AD, done comparisons between Server1 and 2 where the user is setup exactly the same. Tried to add/remove the user in metadata - no luck.</P><P>&nbsp;</P><P>Any ideas?</P> Tue, 09 Jul 2019 20:07:37 GMT https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/572232#M16674 sas_tigress 2019-07-09T20:07:37Z https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/573080#M16705 <P>When the user opens the properties of the problematic user, is this person Read-Only, you can see this at the top of the user's properties when that window is open. Being a member of the SAS Administrators group will not give you the ability to modify users, you would need the <STRONG>Metadata Server: User Administration&nbsp;</STRONG>role.</P> <P>&nbsp;</P> <P>If you already have that role and still are unable to modify the other user, check that user's Authorization tab while logged in as sasadm@saspw to see if any of the permissions are not inherited. The users and groups listed should all have grey boxes around the effective permissions to be inherited. If one is not inherited, click around the checkbox until it is shaded. I have seen issues with changing the permissions on this tab that can make a user Read-Only for themselves and others.&nbsp;</P> Fri, 12 Jul 2019 13:14:36 GMT https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/573080#M16705 Solo2342 2019-07-12T13:14:36Z https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/573497#M16720 <P>Thanks for your response. User already has the privileges that you mentioned below but continues to have the same issue.</P> Mon, 15 Jul 2019 13:38:49 GMT https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/573497#M16720 sas_tigress 2019-07-15T13:38:49Z https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/574461#M16750 Hi <a href="https://communities.sas.com/t5/user/viewprofilepage/user-id/280986">@sas_tigress</a>,<BR /><BR />Are there any errors reported in the Metadata Server Logs while performing this action?<BR /><BR />Does the issue happen only during add/remove a user from metadata or any other metadata update as well?<BR /><BR />-AV Thu, 18 Jul 2019 06:19:02 GMT https://communities.sas.com/t5/Administration-and-Deployment/User-a-part-of-SAS-Administrator-group-is-missing-permissions/m-p/574461#M16750 AnandVyas 2019-07-18T06:19:02Z