Beginning with SAS 9.4M8, SAS Foundation servers use the SSL libraries provided by the OS on which SAS is deployed. In the case of FIPS (and as a SAS recommendation), recent SSL library enhancements necessitate SAS Foundation servers be configured to use the NETENCRYPTALGORITHM or its alias, NETENCRALG = SSL, to specify the use of the TLS protocol for encrypted communications. SAS is improving automation for configuring the SAS system to use TLS. In addition, beginning with PostgreSQL version 14 or later, if FIPS is enabled the hashing functions required for authentication are routed to OpenSSL and must be SCRAM-SHA-256. SAS®9 is planning multi-factor authentication for the middle tier and support for IBM Z Multi-Factor Authentication.
Presenting Company: SAS
Watch the recording
