03-23-2011 10:59 AM
07-24-2014 05:54 AM
I'm trying to do the same . I'm on SAS 9.1.3 version,
You can find documentation on those manuals:
Web Application Administration Guide,
bisecag.pdf (Security Administration Guide),
and on the sas portal: "SAS 9.1.3 Integration Technologies => Server Administrator's Guide"
07-28-2014 02:40 PM
As far as I know that info isn't in the admin guides, but SAS provide very good step by step documentation on configuring the web apps for JAAS. I don't know what version nick22 is on, but this guide is for 9.2 / JBoss:
The docs all have similar titles, so googling 'configuring [appserver version] for web authentication with [sas version]' should bring up what you need.
External web auth gets a lot better in 9.2 onwards, as it's actual JAAS integration rather than just passing a url parameter over
07-28-2014 02:52 PM
There is a lot on this topic in the security admin guide (yes the bisecag) and some others.
A major technical issue whether you are running SAS services NIX (linux/Unix) or Windows.
IWA (Integrated Windows Authentication) is common with Windows environments but not with mixed ones.
Do you want user to be authenticated from Unix to Windows than there are Samba parts to get involved for an naming translation.
Do you want to build a webfrontend authorization only than also that is possible but the result is using generic group accounts with hardcode passwords for the sas-services. All depends on all requirements for a secure environment.
May be it is also possible to propagate from a central point the password to other systems (LDAP - identity management)