cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
☑ This topic is solved. Need further help from the community? Please sign in and ask a new question.
paterd2
Quartz | Level 8 paterd2
Quartz | Level 8
Go to Solution

hardening rest api sas viya

Posted 06-05-2025 06:16 AM (1534 views)

Viya Experts,

 

can we block the access to /identities/users and /identities/groups without breaking the applications in sas viya ?

every authenticated user can list all users and groups in our environment.

Or maybe even better are there hardening advices on the rules in sas viya.

 

Regards,

 

Dik

0 Likes
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
germhm
SAS Employee germhm
SAS Employee

Re: hardening rest api sas viya

Posted 06-16-2025 09:38 AM (687 views)  |   In reply to paterd2

Hi Dik,

maybe this is helpful:

endpoints.secured.groups:

not enabled by default

When enabled, limits non-administrative users’ Read access for groups.

endpoints.secured.members:

not enabled by default

When enabled, limits non-administrative users’ Read access for group members.

endpoints.secured.memberships:

not enabled by default

When enabled, limits non-administrative users’ Read access for group and user memberships.

endpoints.secured.users:

not enabled by default

When enabled, limits non-administrative users’ Read access for other users.

 

SAS Help Center: Service Configuration Properties: Reference

 

best
Mike

View solution in original post

0 Likes
Reply
1 REPLY 1
germhm
SAS Employee germhm
SAS Employee

Re: hardening rest api sas viya

Posted 06-16-2025 09:38 AM (688 views)  |   In reply to paterd2

Hi Dik,

maybe this is helpful:

endpoints.secured.groups:

not enabled by default

When enabled, limits non-administrative users’ Read access for groups.

endpoints.secured.members:

not enabled by default

When enabled, limits non-administrative users’ Read access for group members.

endpoints.secured.memberships:

not enabled by default

When enabled, limits non-administrative users’ Read access for group and user memberships.

endpoints.secured.users:

not enabled by default

When enabled, limits non-administrative users’ Read access for other users.

 

SAS Help Center: Service Configuration Properties: Reference

 

best
Mike

0 Likes
Reply

hackathon24-white-horiz.png

2025 SAS Hackathon: There is still time!

Good news: We've extended SAS Hackathon registration until Sept. 12, so you still have time to be part of our biggest event yet – our five-year anniversary!

Register Now

Discussion stats
  • 1 reply
  • ‎06-05-2025 06:16 AM
  • 1535 views
  • 0 likes
  • 2 in conversation