cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
_Ryan_
Fluorite | Level 6 _Ryan_
Fluorite | Level 6

Web Stored Process blocked

Posted 02-20-2020 04:31 PM (1761 views)

I am attempting to run a stored process from an IIS server.  However the process is blocked and the user sees the following error.

 

You attempted to access a SAS application by using the following URL:

http://servername.company.com:<port>/SASStoredProcess/do

The URL has been blocked because it came from an untrusted site, which might be attempting a malicious attack.

 

 
I have followed the following papers in followed the instructions from the SAS® 9.4 Administration Middle-Tier Administration Guide 
How to Whitelist of Websites and Methods Allowed to Link to SAS Web Applications: 

 

https://go.documentation.sas.com/?cdcId=bicdc&cdcVersion=9.4&docsetId=bimtag&docsetTarget=p1xtsni38p...

 

 

My stored process has an address somewhat like http://myssitename.domainname.com/example_process.htm

 

In application management, configuration manager, SAS application infrastructure, I have the following settings.

 

sas.web.csrf.refers.allowNulltrue
sas.web.csrf.refers.blacklist 
sas.web.csrf.refers.knownHostshttp://mysitename.domainname.com/
sas.web.csrf.refers.performChecktrue
sas.web.csrf.refers.skipMethods 
sas.web.navigation.knownHostshttp://mysitename.domainname.com/

 

 

So can anyone tell me why the user is still blocked from running the stored process?

 

 

Note: if i set performCheck to false, the stored process works and the user is prompted to logon to SAS and can run the stored process, 

 

sas.web.csrf.refers.performCheckfalse

 

That works...but that defeats the the purpose of the whitelist.

 

 

 

0 Likes
Reply
3 REPLIES 3
Anand_V
Ammonite | Level 13 Anand_V
Ammonite | Level 13

Re: Web Stored Process blocked

Posted 02-20-2020 08:57 PM (1724 views)  |   In reply to _Ryan_

Hi @_Ryan_,

Similar query answered here - https://communities.sas.com/t5/SAS-Visual-Analytics/URL-referer-from-internal-site-to-SASVisualAnaly...

After many attempt and per last response from SAS tech support I took out the trailing slash and 
only one entry and everything started to work. 
So it looks like if you are redirecting from a SAS URL you need to add the trailing slash 
but if you are redirecting from a different site in my case 
internal site you don't need the trailing slash.
Reply
_Ryan_
Fluorite | Level 6 _Ryan_
Fluorite | Level 6

Re: Web Stored Process blocked

Posted 02-21-2020 02:10 PM (1661 views)  |   In reply to Anand_V
Thanks Anand_V,

However in this case, removing the trailing slash did not help.

Still perplexed,

Ryan
0 Likes
Reply
Anand_V
Ammonite | Level 13 Anand_V
Ammonite | Level 13

Re: Web Stored Process blocked

Posted 02-23-2020 02:08 AM (1610 views)  |   In reply to _Ryan_
I would suggest you to raise a track with SAS Support by emailing them the error logs and changes tried at support@sas.com for faster resolution.
0 Likes
Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 3 replies
  • ‎02-20-2020 04:31 PM
  • 1762 views
  • 1 like
  • 2 in conversation