CAS authorization slider does not appear to follow SAS best practices : according to SAS documentation, it is recommended to avoid direct denies and instead use “None” (not authorized) to represent the absence of a permission. However, the current behavior of the slider results in a large number of direct denies being applied, which is not desirable.

Although it is possible to correct these permissions manually, many SAS Viya users prefer to use the slider for managing authorizations. This creates conflict of permissions especially when users are in two groups.  Such conflicts are difficult to troubleshoot. Therefore, it would be preferable if moving the slider assigned “None” (not authorized) rather than creating direct denies.

Using “None” instead of direct denies would align better with best practices. Explicit denies are generally unnecessary because the Authenticated Users group already inherits denials for all permissions by default. Thank you for considering it!@SAS Viya: CAS Authorization Window