cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
☑ This topic is solved. Need further help from the community? Please sign in and ask a new question.
pgielen
Calcite | Level 5 pgielen
Calcite | Level 5
Go to Solution

SAML SSO for SASStudio

Posted 07-31-2025 09:31 AM (574 views)

Hi,

 

We want to use SAML for our new SAS 9.4 server.

SSO is working fine for SASAmin but when we login to SASStudio in a web browser, we only get logged in the web part.

After that we get a login for the SASApp, when we fill in the same credentials , as that we use for SSO we are logged in in SASStudio.

when i cancel the login i can see this error. provided in the screenshot

 

is there anyone who get SSO working for SAML and web based SASStudio on a windows server ?

 

Thanks in advance for your help

 

sas1.jpgsas.jpg

0 Likes
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAML SSO for SASStudio

Posted 07-31-2025 09:53 AM (563 views)  |   In reply to pgielen
The SAML credentials wouldn't be valid to start a Workspace Server process, so you'd need to store host credentials in metadata for each user, or use token authentication so the Workspace Server runs using a shared account.
How to Configure SAS Token Authentication
https://go.documentation.sas.com/doc/en/bicdc/9.4/bisecag/p06o3ymf2cuw16n1cmyi47t9icsn.htm
--
Greg Wootton | Principal Systems Technical Support Engineer

View solution in original post

Reply
6 REPLIES 6
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAML SSO for SASStudio

Posted 07-31-2025 09:53 AM (564 views)  |   In reply to pgielen
The SAML credentials wouldn't be valid to start a Workspace Server process, so you'd need to store host credentials in metadata for each user, or use token authentication so the Workspace Server runs using a shared account.
How to Configure SAS Token Authentication
https://go.documentation.sas.com/doc/en/bicdc/9.4/bisecag/p06o3ymf2cuw16n1cmyi47t9icsn.htm
--
Greg Wootton | Principal Systems Technical Support Engineer
Reply
pgielen
Calcite | Level 5 pgielen
Calcite | Level 5

Re: SAML SSO for SASStudio

Posted 07-31-2025 09:57 AM (561 views)  |   In reply to gwootton

Thank you for your reply , the sas token is not an option.

We tried that, but than all users are working in the same directory, they all need access to their own files and shares.

0 Likes
Reply
pgielen
Calcite | Level 5 pgielen
Calcite | Level 5

Re: SAML SSO for SASStudio

Posted 07-31-2025 10:26 AM (548 views)  |   In reply to pgielen

sorry SAS is still very new to me.

Can you tell me how i can store host credentials in metadata for each user ?

 

Patrick

0 Likes
Reply
AhmedAl_Attar
Ammonite | Level 13 AhmedAl_Attar
Ammonite | Level 13

Re: SAML SSO for SASStudio

Posted 07-31-2025 10:36 AM (537 views)  |   In reply to pgielen

Hi @pgielen 

I don't think storing users credentials in the Metadata would be a workable solution!

Just think about what would you do, if and when users change their Passwords? how would you keep your metadata in sync?

just my two cents

0 Likes
Reply
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAML SSO for SASStudio

Posted 07-31-2025 11:03 AM (529 views)  |   In reply to pgielen
Each user would need to store their host launch credentials (user ID and password) under the DefaultAuth authentication domain. Whenever their host credential password changed as @AhmedAl_Attar mentioned they would need to update this.
Your users could store a credential using the Enterprise Guide, SAS Management Console, or Personal Login Manager desktop applications, or through the SAS Environment Manager mid tier application (https://midtier.example.com:8343/SASEnvironmentMgrMidTier/).

Environment Manager - Update a Stored Password
https://go.documentation.sas.com/doc/en/bicdc/9.4/evadmfun/n1rx8gbcz1v4jcn1rhnnbxgdh495.htm#n01imi2e...

SAS Management Console - Update the Password in a Login
https://go.documentation.sas.com/doc/en/bicdc/9.4/mcsecug/n1kxhdu1ams2rzn180hnad7xwzm1.htm#n028hk1vq...

--
Greg Wootton | Principal Systems Technical Support Engineer
0 Likes
Reply
pgielen
Calcite | Level 5 pgielen
Calcite | Level 5

Re: SAML SSO for SASStudio

Posted 07-31-2025 11:36 AM (515 views)  |   In reply to gwootton

Thank you all, for your help.

I will dive further into this, was really hoping we could get rid of Kerberos.

0 Likes
Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 6 replies
  • ‎07-31-2025 09:31 AM
  • 575 views
  • 2 likes
  • 3 in conversation