BookmarkSubscribeRSS Feed

SAS® Security Model Design Golden Rules, Validation, and Monitoring - Webinar follow-up page

Started ‎10-04-2017 by
Modified ‎10-10-2017 by
Views 4,717

This webinar took place on Monday 9th October 2017, Presented by David Stern, SAS and Paul Homes, Metacoda.


Please see here for a link to the recording of the webinar


Here are some useful links that were referenced as part of the session:


Metacoda Websites:


Paul Homes Blog referencing GEL security rules with Metacoda security tests:


Useful Links from David:

Golden Rules for Security Model Design


Five papers on Recommended SAS 9.4 Security Model Design



Source for the Authorization Decision Flowchart: SAS(R) 9.2 Intelligence Platform: Security Administration Guide > Authorization > Authorization Mode...


Checklist of SAS Platform Administration Tasks


We would also like to credit Cecily Hoffritz from SAS Denmark for the quiz questions used in the live webinar


Summary of Questions and Answers raised during the webinar:

1/ Does it matter what version of SAS you are on to be able to use the Metacoda add-ons?

Metacoda Plug-ins can be used with SAS versions 9.2, 9.3 and 9.4, including all maintenance releases such as the most recent SAS 9.4 M5. They can also be used with any SAS Solutions based on the SAS 9 metadata platform, such as SAS Visual Analytics.

2/ How long does it take to install / configure / test the add-ons?

Installing Metacoda Plug-ins in SAS Management Console is very simple and can be done in less than 5 minutes. A script for best practice testing is supplied so you can start doing best practice testing immediately using the Test Runner plug-in. The best practices test script can also be customised if you use any alternative approaches (such as the combined Baseline ACTs and supplemental ACEs as seen in the SAS documentation).

Having installed the interactive Metacoda Plug-ins in SAS Management Console you can immediately start exporting implementation tests from the various Reviewers and run those tests with the Test Runner plug-in.
If you want to schedule exports and tests in batch then you can install the Metacoda Plug-ins Batch Interface. This takes a little more time to install, and we often help our customers the first time they do this. It is usually installed and running within 1-2 hours.

The best practice tests and any exported implementation tests can also be customised. Depending on the level of customisations you want to do, this can take anything from a few minutes upwards. Support is of course available from Metacoda if you need it.

If you'd like to see for yourself how quick and easy it is to install you can register for a 30 day free evaluation at

3/ Is it possible to export XML results in batch mode?  ..on scheduled basis..

Using the Metacoda Plug-ins Batch Interface you can do the following:

  • Batch export of HTML reports for documentation of a Metadata Security Implementation
  • Batch export of Metacoda Security Test XML scripts to be used for implementation testing
  • Batch testing using Metacoda Security Test XML scripts, including best practices tests and/or implementation tests

The results of batch testing can be generated in HTML and/or text format. You can also choose to send an email alert if test failures occur and, if required, on test success too (so you know the tests have run).

As I  mention at the end of the webinar recording, the batch operations can also be combined. For example, the batch export of implementation tests from a test environment to run against a production environment with the goal of ensuring consistency between the environments. You could also do this between versions during migration, such as export from SAS 9.3 to test against SAS 9.4.


If you have any other questions or comments regarding this webinar, please do not hesitate to contact me:


Very well made, useful and lively. I personally enjoyed the presentation. Thanks a lot to the team :). 




Hi there,


I tried accessing the recorded webinar. However, after registering I got the following error:



Is it still possible to view the webinar?




Hi There,


I'll have a look at this for you and get back to you ASAP.


Kind regards,


Hi There,


I've checked the link and it is working OK.  Please could you retry and if you have problems please let me know.


Many thanks,


Golden rules are great. I have one question. If you create an additional hide ACT with a deny for RM for SASUSERS and the right rights for SAS Admin, System Services etc., if there a way to add this with a script on Unix? or do you need to apply it to every folder in Management Console?



Karolina Touwen

Version history
Last update:
‎10-10-2017 12:39 PM
Updated by:



Registration is open! SAS is returning to Vegas for an AI and analytics experience like no other! Whether you're an executive, manager, end user or SAS partner, SAS Innovate is designed for everyone on your team. Register for just $495 by 12/31/2023.

If you are interested in speaking, there is still time to submit a session idea. More details are posted on the website. 

Register now!

Free course: Data Literacy Essentials

Data Literacy is for all, even absolute beginners. Jump on board with this free e-learning  and boost your career prospects.

Get Started

Article Tags