Join Now

SAS User Forum 2017: Implementing Role-Based Access Control / Dynamic Separation of Duties Authoriza

by SAS Employee GeorgMorsing on ‎05-24-2017 05:00 AM (110 Views)

Presentation number 21 by Perttu Muurimäki, Tilastokeskus

Helsinki, 24 May 2017



Traditionally, role-based access control is implemented as group memberships. Access to SAS datasets or metadata libraries requires membership in the group that ‘owns’ the resources. From the point of view of a SAS process, these authorizations are additive. This can lead to different problems all of which can be avoided by using role-based access control / dynamic separation of duties authorization schema. This presentation describes how Statistics Finland's implemented this schema and reports some consequences and experiences.


The presenter did not want to publish this presentation.