Skip to main content

How to Configure https SAS Contextual Analysis? SSL TLS

Question:
We are planning to configure SSL for using https for the web application SAS Contextual Analysis. We have alread installed Web Server and a Web Application Server for Contextual Analysis and it up and running.

We are planning to configure https with SHA2 encription. How should we do that?

Answer:
Below is the high level steps involving certificate installation in SAS to enable https:

1) Stop the Web Server and Web Application Server
2) Modify the server.xml for the Web Application Server and configure for the .keystore - File and the Certificate
3) Modify the httpd - file for the Web Server and then change the httpd-ssl - File
4) Restart both Servers
5) Work with network team to configure the Firewall Ports if needed
6) After configuration is done application should be reached via https within the browser

If you look at SAS documentation, it is recommended to use the SAS Deployment Wizard to configure the SAS Web Application Server to install certificate for TLS. This is to make sure that your TLS settings will always be preserved in future update, add-ons and maintenance.

Below link provides detailed steps for manually configuring and installing HTTPS certificate.

Configuring SAS Web Server Manually for HTTPS - http://go.documentation.sas.com/?docsetId=bimtag&docsetTarget=n0nakjyj6hlqmvn11p9p04l25j9n.htm&docsetVersion=9.4&locale=en

Configuring SAS Web Application Server to Use HTTPS - http://go.documentation.sas.com/?docsetId=bimtag&docsetTarget=n1enfdk7f1fjcqn1ggbrx79lm9i0.htm&docsetVersion=9.4&locale=en

Below documentaion contains information about future activities:
Preserving TLS and Existing Customer Reverse Proxy Customizations - http://go.documentation.sas.com/?docsetId=bimtag&docsetTarget=n0y2fq741xmw8nn1btstcnwnq3jj.htm&docsetVersion=9.4&locale=en

Comments

Post a Comment

Popular posts from this blog

Insufficient authorization to access PIPE error in SAS EG

Issue: When I tried to run SAS code in SAS Enterprise Guide it throws following errors: ERROR: Insufficient authorization to access PIPE. ERROR: Error in the FILENAME statement. Screenshot of error: Solution: This error occurs when you try to run OS commands in SAS code. To run the OS commands in SAS code you need to enable XCMD option. You check it in SAS Management Console by following below steps.   Open SMC -> Expand Servers -> Expand   In SASApp , expand Logical Workspace Server -> right click on Workspace Server. Click properties -> option tab -> advanced options -> launch properties. Check whether Allow XCMD is checked. The issue arises if the Allow XCMD is not checked. In above image, Allow XCMD option is not checked. It should be checked to run OS commands from SAS code. In Unix /Linux machines, this XCMD option can be enabled by using system option XCMD in sasv9 config file or workspaceserver.sh script f...
2 comments
Read more

SAS - CLI error trying to establish connection

Issue: User asked me to make a database connectivity to SQL Server. They provided following details SQL server hostname and ip address Database/DSN name Username Password I made entry in ODBC.ini file. You know, SQL Server entries were made in ODBC.ini and Oracle entries were made in TNS.ora file. Everything went fine, took back up of odbc.ini, made entry and saved the file. So to test this connection I ran the libname statement in SAS Enterprise Guide 6.1. It throwed following error. Error Message: My DB team showed that they are able to login   14 GOPTIONS ACCESSIBLE; 15 LIBNAME test ODBC DATASRC=SGE_DS SCHEMA=VST USER=sales PASSWORD=XXXXXXXXX; ERROR: CLI error trying to establish connection: [SAS/ACCESS to SQL Server][ODBC SQL Server Legacy Driver][SQL Server]Login failed for user 'sales'. Solution: First I suspected that Login failed for user 'sales' meant the password provided by DB team was wrong. They responded that they were able to login wi...
2 comments
Read more

Insufficient authorization to access prgramname.lst

Issue: I had an issue with batch server. The code runs fine in SAS EG and SAS DI Studio but fails when I run with batchserver. Error seems to be ERROR: Insufficient authorization to access /opt/sasinside/Lev1/SASApp/Sas_Program.lst. NOTE: The SAS System stopped processing this step because of errors. Solution: When you execute on batch mode sas tries to save the output file (Sas_Program.lst) under /opt/sasinside/Lev1/SASApp where is no permission to write. We should add two system options to sasv9_usermods.cfg file to redirect this outputs to another directory. The options are following: -altprint <directory>  -print <directory> Where directory is a directory where you have access to write. You must provide this directory. The directory can be some shared location like: /share/sas/lst. If you decide to add this options these are the steps to follow: 1. Create or choose a driectory where your userid have write access. The userid is the ...
Post a Comment
Read more