COMMUNITIES

Select Your Region

Visit the Cary, NC, US corporate headquarters site

Americas

Europe

Middle East & Africa

Asia Pacific

View our worldwide contacts list for help finding your region

Americas

Europe

Middle East & Africa

Asia Pacific

Sign In

Get access to My SAS, trials, communities and more.

Sign Out

Get access to My SAS, trials, communities and more.

SAS Sites

sas.com
Support
Blogs
Communities
Developer
Curiosity
Videos

Documentation

Learn
Brand
PartnerNet
Merchandise

Administration and Deployment

Installing and maintaining your SAS environment
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
mctrit8
Calcite | Level 5 mctrit8
Calcite | Level 5

SAS VIYA 3.5 I don't see user under groups

Posted 05-28-2020 12:14 PM (2975 views)

Hi,

 

I have installesd SAS VIYA 3.5 on Linux, now, after I configured sas.identities.providers.ldap.group, I don't see in SAS the user under the groups.

For example I have in LDAP:

 
 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

forum.JPG

 

but on SAS I don't see the member:

 

forum2.JPG

 

My SAS configuration:

forum3.JPG

 
 

In general: wich objectClass I have to use for users and for groups? Which field for this objextClasses I have to use in SAS configuration? Thanks a lot in advance!

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

0 Likes
Reply
9 REPLIES 9
alexal
SAS Employee alexal
SAS Employee

Re: SAS VIYA 3.5 I don't see user under groups

Posted 05-28-2020 12:59 PM (2962 views)  |   In reply to mctrit8

@mctrit8 ,

 

Please check the most recent log file in /opt/sas/viya/config/var/log/identities/default directory. Do you see any errors there?

0 Likes
Reply
mctrit8
Calcite | Level 5 mctrit8
Calcite | Level 5

Re: SAS VIYA 3.5 I don't see user under groups

Posted 05-28-2020 03:42 PM (2925 views)  |   In reply to alexal

I verified, no errors in it.

0 Likes
Reply
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAS VIYA 3.5 I don't see user under groups

Posted 05-28-2020 01:59 PM (2935 views)  |   In reply to mctrit8

Hi @mctrit8,

Are you able to see the member users when examining the user list?

--
Greg Wootton | Principal Systems Technical Support Engineer
0 Likes
Reply
mctrit8
Calcite | Level 5 mctrit8
Calcite | Level 5

Re: SAS VIYA 3.5 I don't see user under groups

Posted 05-29-2020 03:20 AM (2891 views)  |   In reply to gwootton

Hi,

I can see the users whne I select Users on SAS but when I select Groups on SAS I see the groups but I don't see the member of the groups.

0 Likes
Reply
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAS VIYA 3.5 I don't see user under groups

Posted 05-29-2020 01:42 PM (2848 views)  |   In reply to mctrit8
You may wish to engage SAS Technical Support if you haven't already so they can take a look at your settings and LDAP contents.

From your screen shot it looks like linuxgroup is an OU rather than a group DN, which I haven't seen before. (It's distinguished name is OU=... instead of CN=...) but has attributes associated with a group (objecttype of groupofnames, members, and a CN) Which LDAP server are you using?
--
Greg Wootton | Principal Systems Technical Support Engineer
0 Likes
Reply
mctrit8
Calcite | Level 5 mctrit8
Calcite | Level 5

Re: SAS VIYA 3.5 I don't see user under groups

Posted 06-01-2020 03:22 AM (2780 views)  |   In reply to gwootton

Hi,

sorry, I'm new in LDAP and I don't know what is the right object type for groups, I see there are Objectclass= Organizationalunit but this hasn't the member attribute and the Objectclass=groupOfNames that has the member attribute; exctly what is the Object class you say?

I'm using OpenLDAP for server.

Can you give me an example of a simple group in LDAP? Thank you very much.

0 Likes
Reply
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAS VIYA 3.5 I don't see user under groups

Posted 06-01-2020 09:48 AM (2763 views)  |   In reply to mctrit8

Thanks @mctrit8 ,

Often a OU is created named something like "Groups" that contains the various groups. So you'd have an organizational unit. This is from OpenLDAP's documentation:

 

Note you have two OUs, Group and People, and one user within the "People" OU (dn: uid=test1,ou=People,dc=example,dc=com), and one group within the "Group" OU (dn: cn=testgroup,ou=Group,dc=example,dc=com) with a "member" defined as the user: 

 

        cat memberof.ldif
        dn: dc=example,dc=com
        objectclass: domain
        dc: example

        dn: ou=Group,dc=example,dc=com
        objectclass: organizationalUnit
        ou: Group

        dn: ou=People,dc=example,dc=com
        objectclass: organizationalUnit
        ou: People

        dn: uid=test1,ou=People,dc=example,dc=com
        objectclass: account
        uid: test1

        dn: cn=testgroup,ou=Group,dc=example,dc=com
        objectclass: groupOfNames
        cn: testgroup
        member: uid=test1,ou=People,dc=example,dc=com
--
Greg Wootton | Principal Systems Technical Support Engineer
0 Likes
Reply
mctrit8
Calcite | Level 5 mctrit8
Calcite | Level 5

Re: SAS VIYA 3.5 I don't see user under groups

Posted 06-01-2020 11:00 AM (2754 views)  |   In reply to gwootton

Hi,

I've tried to structure an LDAP tree as you say:

LDAP_GROUP.JPG

 

LDAP_USER.JPG

 

On SAS-VIYA:

GROUP_on_SAS1.JPG

 

 

 

 

 

GROuP_ON_SAS2.JPG

GROUP_ON_SAS3.JPG

 

Then I see th user and the group but I don't see the user as member of the group still:

 

GROUP_ON_SAS4.JPG

GROUP_ON_SAS_5.JPG

 

Thank you for the support.

0 Likes
Reply
gwootton
SAS Super FREQ gwootton
SAS Super FREQ

Re: SAS VIYA 3.5 I don't see user under groups

Posted 06-01-2020 12:32 PM (2743 views)  |   In reply to mctrit8

Thanks @mctrit8 

 

You may wish to use the steps here to get more detail in the identities service log on the cause of the member list being empty:

 

Usage Note 61882: Troubleshooting identities and the identities service in SAS® Viya®

--
Greg Wootton | Principal Systems Technical Support Engineer
0 Likes
Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 9 replies
  • ‎05-28-2020 12:14 PM
  • 2976 views
  • 0 likes
  • 3 in conversation
Top