BookmarkSubscribeRSS Feed
jplarios
Quartz | Level 8

When doing a SSL - we only want the web server SSL the SAS Applications like IDP, WRS and STP Web Server.

Hence for the section of the SAS 9.4 install/config guide, Implement Certificates for SAS Deployment Agent, will not apply, correct? only 'Certificates for Web Server' section. Correct?

Thanks for any help on this,

jp

1 REPLY 1
gregraka
SAS Employee

A source of mine writes:

 

There is a difference between these two types of connections (Web Server connections and Agent connections), and it would be best if they considered them independently within their security infrastructure.

 

Given that the connections between the SAS Deployment Agents are internal only connections, they can do whatever they want (set up certificates or not), however, I personally do not think it is a good practice to allow something like the SAS Deployment Agent to remain insecure. It’s basically an API that can execute anything you want on a remote machine. In general, we recommend that the Deployment Agent and the EV Agents be secured using our generated certificates regardless of what they intend to do with external network connections.

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

CLI in SAS Viya

Learn how to install the SAS Viya CLI and a few commands you may find useful in this video by SAS’ Darrell Barton.

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 1 reply
  • 965 views
  • 0 likes
  • 2 in conversation