@AmineBs wrote:
Hi All, Intersting post. What if securtiy policy is prohibiting the setuid required for the auth files needed by SAS ? is there any other option to get the 3 modules running fine : sasauth, sasperm and elssrv ?
Then that security policy needs to be reviewed and adapted. For a seamless switch of current userid, UNIX needs superuser privileges, period.
Look at the login executable, which basically does the same that the three SAS modules do; you will find that it also is owned by root and has setuid set.
A so-called "organisator" or "administrator" who is not aware of this is
a) dumb
b) lazy
c) a combination of both
and is in dire need of replacement.