cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
🔒 This topic is solved and locked. Need further help from the community? Please sign in and ask a new question.
VasilijNevlev
Quartz | Level 8 VasilijNevlev
Quartz | Level 8
Go to Solution.

Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-02-2017 03:28 PM (1352 views)

Hello! 

 

Does anyone have a good naming convention for SAS User Groups and User Roles in SAS SMC? I.e. something that follows some sort of standard on granularity, easy to interpret group names into business meaning, etc? 

 

Thank you! 

=======================================
For more information about {An}alytium, visit https://www.analytium.co.uk
1 ACCEPTED SOLUTION

Accepted Solutions
JuanS_OCS
Amethyst | Level 16 JuanS_OCS
Amethyst | Level 16

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-09-2017 07:23 AM (1345 views)  |   In reply to VasilijNevlev

Hi @VasilijNevlev,

 

I would not complicate myself too much on that matter. You want to set up a standard, but for naming. Therefore the important part is that can be understood and accepted by the relevant departments at your company. All depends as well in the 

 

An extreme example is that some companies accept only one level of grouping, meaning you cannot nest groups. In this case, I would set names top to down such as organization (8char max), department - country (3 + 2 chars) or something like this.

 

If you have freedom over the naming, I would just create groups top to down on the AD such, and following a logic. 

 

Perhaps in the AD those groups have a strange naming convention, because they may come from other systems, or even different Domain Controlers, but with the Shadow Groups you can give a normal name, which must be understood just by the SASAdmins and the Auditors.

 

Point is: probably nobody can give you a best name convention, without knowing your business upfront. My best suggestion here is to follow your common sense. And what ever will be implemented, it is what will become standard.

View solution in original post

0 Likes
8 REPLIES 8
JuanS_OCS
Amethyst | Level 16 JuanS_OCS
Amethyst | Level 16

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-03-2017 06:07 AM (1315 views)  |   In reply to VasilijNevlev

Hello @VasilijNevlev,

 

for the roles, simply what is easier for you. SAS already provides some naming for the default roles, but feel free to select any. 

And for the groups, I would clearly use similar names (or the same) as in your Active Directory/LDAP. And in case you use shadow groups, you could start with some prefix (eg "SAS") to be able to recognize them from the AD groups registered in the SAS metadata.

0 Likes
VasilijNevlev
Quartz | Level 8 VasilijNevlev
Quartz | Level 8

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-04-2017 03:38 AM (1282 views)  |   In reply to JuanS_OCS

Thank's Juan, good idea to reuse AD naming convention. Now if only my client's IT had a very consistent naming convention applied to AD 🙂 

 

Thanks you for pointing towards shadow groups. It is a must to have them in place in case the sync fails. 

 

Vasilij

=======================================
For more information about {An}alytium, visit https://www.analytium.co.uk
JuanS_OCS
Amethyst | Level 16 JuanS_OCS
Amethyst | Level 16

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-04-2017 04:55 AM (1273 views)  |   In reply to VasilijNevlev

Haha, yeah, that is a challenge sometimes. Although I understand why it happens sometimes.

 

Ahd, yes, indeed, shadow groups is a good idea 🙂

 

@VasilijNevlev: are you aware of the Metacoda Idenntity Sync plug-ins? They help a lot with those questions. They are also a close interface for IT, something they can understand, and it cqan run in batch mode. If you are interested, I am sure @MichelleHomes or @PaulHomes can chime in to give you a hand. They are experts in this area.

MichelleHomes
Meteorite | Level 14 MichelleHomes
Meteorite | Level 14

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-04-2017 05:38 AM (1268 views)  |   In reply to JuanS_OCS

Thanks @JuanS_OCS for mentioning the Metacoda Identity Sync Plug-in.

 

@VasilijNevlev, I was going to refer you to a post about shadow groups that may be of interest where @PaulHomes shares his experiences with AD sync that you may find helpful too https://communities.sas.com/t5/SAS-Communities-Library/Shadow-Groups-for-LDAP-Synchronisation/ta-p/3...

 

For some further technical detail on the plug-in you could have a look at Paul's blog post that includes a 10 minute screencast https://platformadmin.com/blogs/paul/2015/07/synchronizing-sas-platform-identities/

 

Kind Regards,

Michelle

//Contact me to learn how Metacoda software can help keep your SAS platform secure - https://www.metacoda.com
VasilijNevlev
Quartz | Level 8 VasilijNevlev
Quartz | Level 8

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-09-2017 07:13 AM (1158 views)  |   In reply to MichelleHomes

Hello Michelle, 

 

Thank you for the links. I did see the post, I think it came up as 2nd link on Good Search 🙂 I have sent you a private message to have a chat about the plug in. 

 

@JuanS_OCS Thank you for the suggestion. 

 

Regards,

Vasilij

=======================================
For more information about {An}alytium, visit https://www.analytium.co.uk
JuanS_OCS
Amethyst | Level 16 JuanS_OCS
Amethyst | Level 16

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-08-2017 06:51 AM (1182 views)  |   In reply to VasilijNevlev

Hello @VasilijNevlev,

 

I am wondering, would you need additional information or support with your question? 

 

Kind regards,

Juan

0 Likes
VasilijNevlev
Quartz | Level 8 VasilijNevlev
Quartz | Level 8

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-09-2017 07:15 AM (1157 views)  |   In reply to JuanS_OCS
Hello Juan,

I am trying to work out a more robust naming convention that involves suffixes for different countries, organisations and functions. Ideally an answer with workable convention would be the right answer. Do you have any ideas?

Regards,
Vasilij
=======================================
For more information about {An}alytium, visit https://www.analytium.co.uk
0 Likes
JuanS_OCS
Amethyst | Level 16 JuanS_OCS
Amethyst | Level 16

Re: Naming Convention for SAS User Groups and User Roles in SAS SMC

Posted 08-09-2017 07:23 AM (1346 views)  |   In reply to VasilijNevlev

Hi @VasilijNevlev,

 

I would not complicate myself too much on that matter. You want to set up a standard, but for naming. Therefore the important part is that can be understood and accepted by the relevant departments at your company. All depends as well in the 

 

An extreme example is that some companies accept only one level of grouping, meaning you cannot nest groups. In this case, I would set names top to down such as organization (8char max), department - country (3 + 2 chars) or something like this.

 

If you have freedom over the naming, I would just create groups top to down on the AD such, and following a logic. 

 

Perhaps in the AD those groups have a strange naming convention, because they may come from other systems, or even different Domain Controlers, but with the Shadow Groups you can give a normal name, which must be understood just by the SASAdmins and the Auditors.

 

Point is: probably nobody can give you a best name convention, without knowing your business upfront. My best suggestion here is to follow your common sense. And what ever will be implemented, it is what will become standard.

0 Likes

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

CLI in SAS Viya

Learn how to install the SAS Viya CLI and a few commands you may find useful in this video by SAS’ Darrell Barton.

Watch CLI in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 8 replies
  • ‎08-02-2017 03:28 PM
  • 1353 views
  • 5 likes
  • 3 in conversation