cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
☑ This topic is solved. Need further help from the community? Please sign in and ask a new question.
paterd2
Quartz | Level 8 paterd2
Quartz | Level 8
Go to Solution

hardening rest api sas viya

Posted 06-05-2025 06:16 AM (1772 views)

Viya Experts,

 

can we block the access to /identities/users and /identities/groups without breaking the applications in sas viya ?

every authenticated user can list all users and groups in our environment.

Or maybe even better are there hardening advices on the rules in sas viya.

 

Regards,

 

Dik

0 Likes
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
germhm
SAS Employee germhm
SAS Employee

Re: hardening rest api sas viya

Posted 06-16-2025 09:38 AM (925 views)  |   In reply to paterd2

Hi Dik,

maybe this is helpful:

endpoints.secured.groups:

not enabled by default

When enabled, limits non-administrative users’ Read access for groups.

endpoints.secured.members:

not enabled by default

When enabled, limits non-administrative users’ Read access for group members.

endpoints.secured.memberships:

not enabled by default

When enabled, limits non-administrative users’ Read access for group and user memberships.

endpoints.secured.users:

not enabled by default

When enabled, limits non-administrative users’ Read access for other users.

 

SAS Help Center: Service Configuration Properties: Reference

 

best
Mike

View solution in original post

0 Likes
Reply
1 REPLY 1
germhm
SAS Employee germhm
SAS Employee

Re: hardening rest api sas viya

Posted 06-16-2025 09:38 AM (926 views)  |   In reply to paterd2

Hi Dik,

maybe this is helpful:

endpoints.secured.groups:

not enabled by default

When enabled, limits non-administrative users’ Read access for groups.

endpoints.secured.members:

not enabled by default

When enabled, limits non-administrative users’ Read access for group members.

endpoints.secured.memberships:

not enabled by default

When enabled, limits non-administrative users’ Read access for group and user memberships.

endpoints.secured.users:

not enabled by default

When enabled, limits non-administrative users’ Read access for other users.

 

SAS Help Center: Service Configuration Properties: Reference

 

best
Mike

0 Likes
Reply

sas-innovate-2026-white.png



April 27 – 30 | Gaylord Texan | Grapevine, Texas

Registration is open

Walk in ready to learn. Walk out ready to deliver. This is the data and AI conference you can't afford to miss.
Register now and save with the early bird rate—just $795!

Register now

Upcoming Events
View All
Discussion stats
  • 1 reply
  • ‎06-05-2025 06:16 AM
  • 1773 views
  • 0 likes
  • 2 in conversation