cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
☑ This topic is solved. Need further help from the community? Please sign in and ask a new question.
paterd2
Quartz | Level 8 paterd2
Quartz | Level 8
Go to Solution

hardening rest api sas viya

Posted 2 weeks ago (933 views)

Viya Experts,

 

can we block the access to /identities/users and /identities/groups without breaking the applications in sas viya ?

every authenticated user can list all users and groups in our environment.

Or maybe even better are there hardening advices on the rules in sas viya.

 

Regards,

 

Dik

0 Likes
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
germhm
SAS Employee germhm
SAS Employee

Re: hardening rest api sas viya

Posted Monday (86 views)  |   In reply to paterd2

Hi Dik,

maybe this is helpful:

endpoints.secured.groups:

not enabled by default

When enabled, limits non-administrative users’ Read access for groups.

endpoints.secured.members:

not enabled by default

When enabled, limits non-administrative users’ Read access for group members.

endpoints.secured.memberships:

not enabled by default

When enabled, limits non-administrative users’ Read access for group and user memberships.

endpoints.secured.users:

not enabled by default

When enabled, limits non-administrative users’ Read access for other users.

 

SAS Help Center: Service Configuration Properties: Reference

 

best
Mike

View solution in original post

0 Likes
Reply
1 REPLY 1
germhm
SAS Employee germhm
SAS Employee

Re: hardening rest api sas viya

Posted Monday (87 views)  |   In reply to paterd2

Hi Dik,

maybe this is helpful:

endpoints.secured.groups:

not enabled by default

When enabled, limits non-administrative users’ Read access for groups.

endpoints.secured.members:

not enabled by default

When enabled, limits non-administrative users’ Read access for group members.

endpoints.secured.memberships:

not enabled by default

When enabled, limits non-administrative users’ Read access for group and user memberships.

endpoints.secured.users:

not enabled by default

When enabled, limits non-administrative users’ Read access for other users.

 

SAS Help Center: Service Configuration Properties: Reference

 

best
Mike

0 Likes
Reply

hackathon24-white-horiz.png

The 2025 SAS Hackathon Kicks Off on June 11!

Watch the live Hackathon Kickoff to get all the essential information about the SAS Hackathon—including how to join, how to participate, and expert tips for success.

YouTube LinkedIn

Discussion stats
  • 1 reply
  • 2 weeks ago
  • 934 views
  • 0 likes
  • 2 in conversation