cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
shlomiohana
Obsidian | Level 7 shlomiohana
Obsidian | Level 7

Email sending restriction

Posted 2 weeks ago (682 views)
Hello,

Currently, users in my system can send an email through SAS GUIDE and impersonate someone else in the organization.

For example, I can send an email as if my manager sent it.

I want to limit this option and provide a list of emails that are authorized to be sent.

If I try to send an email that is not on the list, I will get an error.

Is it possible to implement this restriction in SAS?

Thank you very much.
0 Likes
Reply
8 REPLIES 8
carl_sommer
SAS Employee carl_sommer
SAS Employee

Re: Email sending restriction

Posted 2 weeks ago (660 views)  |   In reply to shlomiohana

See Fencing in your SAS users with LOCKDOWN - The SAS Dummy   
You should be able to selectively enable email using the LOCKDOWN ENABLE_AMS=EMAIL statement via yoru workspace server autoexec.

 

Carl Sommer - SAS Technical Support

0 Likes
Reply
shlomiohana
Obsidian | Level 7 shlomiohana
Obsidian | Level 7

Re: Email sending restriction

Posted 2 weeks ago (644 views)  |   In reply to carl_sommer
I currently have lockdown ENABLE_AMS=EMAIL in the autoexec file, how do i implement a restriction?
0 Likes
Reply
carl_sommer
SAS Employee carl_sommer
SAS Employee

Re: Email sending restriction

Posted 2 weeks ago (610 views)  |   In reply to shlomiohana

Can you share your autoexec?  I would suggest some amount of conditional code to decide for whom to provide the enablement for.

Carl Sommer - SAS Technical Support

0 Likes
Reply
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: Email sending restriction

Posted 2 weeks ago (588 views)  |   In reply to shlomiohana
SAS allows you to prevent the email access method from being used at all using LOCKDOWN as Carl mentions. I think to limit what addresses can be used as the sender would be something done on the mail server you are using.
--
Greg Wootton | Principal Systems Technical Support Engineer
0 Likes
Reply
carl_sommer
SAS Employee carl_sommer
SAS Employee

Re: Email sending restriction

Posted 2 weeks ago (586 views)  |   In reply to gwootton

That's a good distinction.  While you could conditionally execute the lockdown statement in the autoexec by user, for those allowed to use email, you won't be able to enforce what user the set as the sender.

Carl Sommer - SAS Technical Support

0 Likes
Reply
shlomiohana
Obsidian | Level 7 shlomiohana
Obsidian | Level 7

Re: Email sending restriction

Posted 2 weeks ago (561 views)  |   In reply to carl_sommer
The autoexec file contains:

lockdown ENABLE_AMS=HTTP;
lockdown ENABLE_AMS=EMAIL;
lockdown list;
0 Likes
Reply
thesasuser
Lapis Lazuli | Level 10 thesasuser
Lapis Lazuli | Level 10

Re: Email sending restriction

Posted a week ago (472 views)  |   In reply to shlomiohana

Any restriction on the SAS side will be easy to bypass.
Consider restricting at the SMTP server level. The mail server admin at your place could help.

Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 8 replies
  • 2 weeks ago
  • 683 views
  • 1 like
  • 5 in conversation