https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698480#M20692 <P>Please post an example of the issue, including the FILENAME and PROC S3 code.</P> Thu, 12 Nov 2020 18:55:13 GMT SASKiwi 2020-11-12T18:55:13Z https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698385#M20687 <P>Greetings,&nbsp;</P><P>&nbsp;</P><P>I a SAS Viya 3.5 environment and need end users to use Proc s3 with key and secret. However I do not want the users to actually see the values of the ID and secret.&nbsp; &nbsp;whether you use a custom config file or configure the AWS cli. I will&nbsp; still need to grant users read access to the files.&nbsp;</P><P>this means with a simple filename statement, users will be able to see the credentials to S3 and I don't want that.&nbsp;</P><P>How is I secure these(hide them from end users) credentials and still have proc s3 read and use the files.&nbsp;&nbsp;</P> Thu, 12 Nov 2020 13:57:03 GMT https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698385#M20687 McDiddles 2020-11-12T13:57:03Z https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698480#M20692 <P>Please post an example of the issue, including the FILENAME and PROC S3 code.</P> Thu, 12 Nov 2020 18:55:13 GMT https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698480#M20692 SASKiwi 2020-11-12T18:55:13Z https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698605#M20695 <P><STRONG>Step 1:</STRONG> configured AWS CLi on host.<BR />which creates the config and credentiala file in <STRONG>/home/username/.aws/</STRONG><BR />the credential file contains the access KeyId and Secret which I don't want user to see</P><P><STRONG>Step 2:</STRONG> run proc s3 which used those credentials to list a bucket and perform other operations;</P><P><EM><STRONG>Proc s3;</STRONG></EM><BR /><EM><STRONG>list "bucket-name";</STRONG></EM><BR /><EM><STRONG>run;</STRONG></EM></P><P><STRONG>Step 3:</STRONG> This step is what I don't want users to be able to do but I cannot remove read permission on the credentials file;<BR /><EM><STRONG>filename secrets "/home/didie.muyco/.aws/credentials";</STRONG></EM><BR /><EM><STRONG>proc import datafile=secrets out=credentials dbms=dlm;</STRONG></EM><BR /><EM><STRONG>run;</STRONG></EM></P><P>The above import exports the credentials into SAS and end users can see it <span class="lia-unicode-emoji" title=":disappointed_face:">😞</span>&nbsp;</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="McDiddles_0-1605257866621.png" style="width: 400px;"><img src="https://communities.sas.com/t5/image/serverpage/image-id/51625i00C0D3E2205CB414/image-size/medium?v=v2&amp;px=400" role="button" title="McDiddles_0-1605257866621.png" alt="McDiddles_0-1605257866621.png" /></span></P><P>How can I work around this?&nbsp;</P> Fri, 13 Nov 2020 09:00:41 GMT https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/698605#M20695 McDiddles 2020-11-13T09:00:41Z https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/703092#M20851 <P>Hi<BR />Which SAS release are you on?Possible to use IAM Roles?<BR />Seem SAS has implemented it in the newer release.<BR /><A href="https://documentation.sas.com/?cdcId=pgmsascdc&amp;cdcVersion=9.4_3.5&amp;docsetId=proc&amp;docsetTarget=n1volodm4xnj3xn1s99poiemcha2.htm&amp;locale=en#n1fyp40x7vdmdwn13c6slecd94yq">https://documentation.sas.com/?cdcId=pgmsascdc&amp;cdcVersion=9.4_3.5&amp;docsetId=proc&amp;docsetTarget=n1volodm4xnj3xn1s99poiemcha2.htm&amp;locale=en#n1fyp40x7vdmdwn13c6slecd94yq</A><BR />As i understand early of this year i still not able to use the IAM Roles.<BR />Hope this help.</P> Wed, 02 Dec 2020 13:15:31 GMT https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/703092#M20851 KS4NCS 2020-12-02T13:15:31Z https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/703185#M20852 <P>Have you raised this with SAS Tech Support? You'll get a quicker answer that way.</P> Wed, 02 Dec 2020 19:15:00 GMT https://communities.sas.com/t5/Administration-and-Deployment/Hide-AWS-KEYID-and-Secret-when-using-Proc-S3/m-p/703185#M20852 SASKiwi 2020-12-02T19:15:00Z