No problem Mark. Glad to hear it's resolved. Thanks for marking the post as solved too. ... View more

Are you running that second query in the same SAS session? Have you tried running it in a new session? Do you still get the old encoded password? The metadata query functions cache metadata. I haven't tested to see if it caches across data step boundaries, but if you find that running the query in a new session returns the new encoded password then you might want to look at the METADATA_PURGE function to clear the cache before your second query. ... View more

Hi Ronan, not sure if you saw the ValidateServer command line tool in the SAS Platform Object Framework. I can't find the documentation link for it but there is a note about it: SAS Usage Note 42523: ValidateServer utility to check availability of SAS® 9.2 Business Intelligence servers. The note is about SAS 9.2 but it's still there in SAS 9.4 M3 ($SASHOME/SASPlatformObjectFramework/9.4/ValidateServer). ... View more

I mean that you could consider shifting the burden of authenticating users across multiple providers from the SAS platform layer to the operating system platform layer. If you can configure the UNIX server, where your metadata server runs, to authenticate against multiple providers (and it is appropriately aligned with your IT security policies) then SAS can be configured for simple host authentication. An example could be using SSSD with multiple domains.   Another possibility with VA is to shift the authentication to the mid-tier, where there are many authentication configuration options, then use (Trusted) Web Authentication possibly in combination with SAS Token Authenticaiton. Have a read through the Authentication Mechanisms section of the SAS 9.4 Intelligence Platform: Security Administration Guide for more background. You may also find the following papers and resources provide you with more ideas:  SAS Global Forum 2014 Paper: Advanced Security Configuration Options for SAS® 9.4 Web Applications and Mobile Devices by Heesun Park (SAS Institute) SAS Global Forum 2014 Paper: An Advanced Fallback Authentication Framework for SAS® 9.4 and SAS® Visual Analytics by Zhiyong Li &Mike Roda (SAS Institute) The SAS Web Server Authentication and Web Authentication sections in the SAS 9.4 Intelligence Platform: Middle-Tier Administration Guide As an example of the flexibility that mid-tier authentication can provide SAS Visual Analytics Guest Access with IWA Fallback   Since there are lots of options around authentication, without an understanding of your environment, SAS product mix, and business requirements it is hard to give specific advice. I would suggest contacting SAS Professional Services or a SAS Partner in your local region if you need more in-depth assistance. ... View more

I would also suggest you look into SAS Environment Manager where you can have alerts that notify people when they get triggered. See the Working with Resource Alerts section in the SAS Environment Manager 2.5: User's Guide. You might also want to look at the Service Architecture Alert Definitions appendix for some examples of the alerts you get when you enable the SAS Environment Manager Service Architecture. It includes server/service and spawner availability alerts and many more. ... View more

See the How to Configure Direct LDAP Authentication, Multiple LDAP Servers section in the SAS 9.4 Intelligence Platform: Security Administration Guide.   You could also talk to your sysadmin about the possibility of configuring your UNIX platform for authentication against multiple providers and just leave SAS to do host authentication. ... View more

You have several choices: Log onto the server and use the ObjectSpawner.sh or ObjectSpawner.bat script - see Using Scripts to Operate SAS Servers Individually ... or use SAS Environment Manager - see Using SAS Environment Manager to Operate Servers ... or use SAS Management Console - see Use SAS Management Console to Operate the SAS Object Spawner or the SAS/CONNECT Spawner ... View more