cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
🔒 This topic is solved and locked. Need further help from the community? Please sign in and ask a new question.
ghassanzghaib
Fluorite | Level 6 ghassanzghaib
Fluorite | Level 6
Go to Solution

Securing the SAS platform best practice

Posted 09-25-2019 02:51 PM (666 views)

Hi,

 

I'm in the process of preparing a SAS 9.4M6 Platform on a Windows64Bit server.

I successfully installed and configured the platform, but was later asked to secure it with TLS 1.2 (SSL/HTTPS).

The SAS Installation and configuration guide as well as a couple of SAS whitepapers suggest generating and importing the certificates before running the configuration in the SAS Deployment Manager.

Now in my case, the configuration was executed before dealing with the certificates.

 

I would appreciate a recommendation on how to proceed with the security.

1. Can I just add the certificates to the already configured plateforme?

2. Should I Remove the existing configuration, Add the Certificates and configure it again?

3. Any other ideas?

 

Thanks in advance.

 

0 Likes
1 ACCEPTED SOLUTION

Accepted Solutions
Anand_V
Ammonite | Level 13 Anand_V
Ammonite | Level 13

Re: Securing the SAS platform best practice

Posted 09-26-2019 12:00 AM (633 views)  |   In reply to ghassanzghaib

Hi @ghassanzghaib 

 

You can follow the manual steps listed in the middle tier admin guide to apply SSL certs after the deployment was completed.

You should start looking at the steps from the section below in the link here.

 

If you did not choose to configure with secure sockets during the initial installation and configuration with the SAS Deployment Wizard, you can manually configure SAS Web Server to use HTTPS. Follow these steps:
This could be quite complex depending upon the architecture you are supporting, so its a good pratice to perform a cold backup of your deployment before making any changes.
 
Thanks!

View solution in original post

0 Likes
3 REPLIES 3
Anand_V
Ammonite | Level 13 Anand_V
Ammonite | Level 13

Re: Securing the SAS platform best practice

Posted 09-26-2019 12:00 AM (634 views)  |   In reply to ghassanzghaib

Hi @ghassanzghaib 

 

You can follow the manual steps listed in the middle tier admin guide to apply SSL certs after the deployment was completed.

You should start looking at the steps from the section below in the link here.

 

If you did not choose to configure with secure sockets during the initial installation and configuration with the SAS Deployment Wizard, you can manually configure SAS Web Server to use HTTPS. Follow these steps:
This could be quite complex depending upon the architecture you are supporting, so its a good pratice to perform a cold backup of your deployment before making any changes.
 
Thanks!
0 Likes
ghassanzghaib
Fluorite | Level 6 ghassanzghaib
Fluorite | Level 6

Re: Securing the SAS platform best practice

Posted 03-19-2020 09:50 AM (475 views)  |   In reply to Anand_V

Hi @Anand_V ,

 

I was able to manually fix the issues for some of the SAS Web Apps following the instructions in the admin guide and some SAS notes.

Unfortunately, it did not work for some of the other apps. So I had to change my approach by starting from scratch on a new VM, preparing the certificates after the installation and proceeding with the configuration of SSL in the configuration wizard.

 

Thanks for your help.

 

SASKiwi
PROC Star SASKiwi
PROC Star

Re: Securing the SAS platform best practice

Posted 03-19-2020 08:50 PM (466 views)  |   In reply to ghassanzghaib

@ghassanzghaib  - Unfortunately your experience reinforces the importance of getting the design of your SAS infrastructure as complete as possible before installation. 

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 3 replies
  • ‎09-25-2019 02:51 PM
  • 667 views
  • 2 likes
  • 3 in conversation