Category: SAS Software

Keyword Bookmark Search with SAS Support

I had noticed recently that when I searched for SAS documentation on Google I wasn’t finding the SAS 9.4 documentation pages I wanted. I tweeted about it, found others had the same issue, and that SAS are working to address it. In the interim, the answer was simple of course … search using support.sas.com instead. However, I’m impatient and am used to just typing my query in the web browser address bar (e.g. sas 9.4 iomserverappender) and then clicking on the first or second link in the search results (when the search query is unique enough). It’s very fast. Finding and clicking a bookmark, waiting for the page to load, locating the search field on the page, typing in the query, clicking the submit button, waiting for the search results page to load, and clicking on the right link …. well that’s quite a bit more work! ;) [#FirstWorldProblems]

So, I’ve switched to using another method where I can keep typing my SAS 9.4 documentation search in the browser address bar AND use support.sas.com at the same time. It might even work out better than before.

In Chrome/Chromium you can add search engines with keywords (right click over the address bar and select Edit search engines… from the context menu):

Chrome Search Engines with SAS Support

In Firefox you have keyword searches via bookmarks: Continue reading “Keyword Bookmark Search with SAS Support”

Metacoda Auth Domain Reviewer

Update 05Mar2019: The Metadata Auth Domain Reviewer discussed in this blog post is now available with the Metacoda Plug-ins 6.1 R1 release, and also includes a new Libraries tab based on feedback from customers during early-access testing.

One of the new Metacoda Security Plug-ins features arriving in version 6.1 is the Auth Domain Reviewer. Like the other reviewers, this plug-in is used for investigating, documenting and testing how a SAS metadata security feature has been used within a particular SAS platform deployment. When I’m reviewing metadata security for a SAS platform I like to look at it from several different perspectives and authentication domains is one of them. I like to see:

  • What authentication domains have been added beyond the initial DefaultAuth?
  • How have they been used with respect to inbound logins?
  • How have they been used with respect to outbound logins and providing shared credentials for database access?
  • How have they been used with respect to 3rd party database system connections?
  • Are there any unused ones, possibly added by accident, that can be cleaned up?
  • Are there any seemingly duplicate ones that might be consolidated?

In the past it has been time-consuming to gather this information together, so this new plug-in Continue reading “Metacoda Auth Domain Reviewer”

Checking a SAS Setinit/License in Metadata

When I apply a new SAS license (setinit) each year, sometime I forget to also update it in metadata. I might not even remember until I get an email from the SAS platform itself:

From: SAS Platform
Subject: SAS Product Expiration Notification
To: Me
Your license for SAS product name on sas.example.com has expired. Please contact your on-site SAS support personnel to obtain your updated setinit information.

“on-site SAS support personnel” … hey that’s me! I feel embarrassed that I forgot … again!

So, what if you want to be a bit more proactive and double-check whether you have an up to date SAS setinit in metadata? Continue reading “Checking a SAS Setinit/License in Metadata”

Metacoda Plug-ins Tip: Find ResponsibleParty Objects for a User

Sometimes you want to find all of the SAS metadata objects a user may be associated with. Where SAS applications have tagged a user as a ResponsibleParty, we can use the Metacoda Metadata Explorer with an advanced XMLSELECT style query to find them. Use the following query (including curly braces) in the Search field, replacing the Name value (demobob here) with the name (not display name) of the user you want to look for:

{{{ *[ResponsibleParties/ResponsibleParty/Persons/Person[@Name='demobob'] }}}

This will show all objects in metadata where demobob is present as one of the responsible parties (see below).​ Continue reading “Metacoda Plug-ins Tip: Find ResponsibleParty Objects for a User”

Did I add that CA Certificate to the SAS Trusted CA Bundle?

Sometimes I forget whether I’ve added our internal site root and intermediate CA certificates to the Trusted CA Bundle that SAS® Software applications use. Sometimes I also forget the command I can use to find out whether I did! ;) As is often the case with my blog posts, by jotting things down here, I can find them again either by searching this blog, or more likely, by remembering I wrote it when I see it turn up in Google search results!

If you use site-signed certificates from your own internal CA in your SAS platform installations then you’re probably already familiar with adding them to the Trusted CA Bundle using the SAS Deployment Manager (see the Manage Certificates in the Trusted CA Bundle Using the SAS Deployment Manager section in the Encryption in SAS® 9.4 book for more info).

If you want to find out what CA certificates are already in that bundle you can use the Java keytool command like so:

/opt/sas94m5/sashome/SASPrivateJavaRuntimeEnvironment/9.4/jre/bin/keytool -list -keystore /opt/sas94m5/sashome/SASSecurityCertificateFramework/1.1/cacerts/trustedcerts.jks -storepass changeit

It generates a long list of CA certs, so I pipe it through grep to look for the ones I want:

/opt/sas94m5/sashome/SASPrivateJavaRuntimeEnvironment/9.4/jre/bin/keytool -list -keystore /opt/sas94m5/sashome/SASSecurityCertificateFramework/1.1/cacerts/trustedcerts.jks -storepass changeit | grep -i metacoda

If you want more details on the certificates you can Continue reading “Did I add that CA Certificate to the SAS Trusted CA Bundle?”