Well, I can understand that SAS will not list permissions for all nested groups (Part 1 of my post) though it would be helpful, but why it does not show correct permissions if I ask to show them explicitly (Part 2 of my post)?
For example:
1) create group1
2) create group2 and make it a member of group1
3) grant ReadInfo on some caslib "mylib" to group1
4) Run
proc cas; accessControl.whatIsEffective / ids={{identity="group1", identityType="group"}}, objectSelector={objType="caslib",caslib="mylib"}, ReturnDecisionText=true; run; quit;
5) Run
proc cas; accessControl.whatIsEffective / ids={{identity="group2", identityType="group"}}, objectSelector={objType="caslib",caslib="mylib"}, ReturnDecisionText=true; run; quit;
Should 4) and 5) both show that these groups are Authorized? Yes (to my understanding). Why it shows Authorized in the first case and Not Authorized in the second case?
... View more