Metacoda Support

How to Access Support

Customer Portal

Registered Metacoda software users can login to the Metacoda Customer Portal to access software updates, documentation and technical support.

Contact Us

Whether you’re a registered Metacoda software user or yet to become one, please contact us if you have any questions.

Dealing with Metacoda is always excellent and you are easily one of our best vendors when it comes to prompt responses and great support. Thanks to Michelle, Paul and the team for everything you have done and will do in the future!

Patrick Casey
Director of Middleware Services and I&O Operational Security
ITS, UNC-Chapel Hill

Frequently Asked Questions

How does Metacoda software help mitigate risk in keeping my SAS platform secure?

You’ve implemented a great security plan… but how do you make sure the environment stays secure? Can you afford to just ‘set and forget’? Probably not. Learn how we can take you on a journey beyond compliance with automated validation and monitoring of your implementation security and of SAS security best practices.

I need to answer audit type questions quickly like, “Who has access to X?”, “What does this user have access to?”, “Why does this user doesn’t get access to X?” etc.

Being able to quickly respond to audit type questions quickly and confidently is a reflection of a well managed and confidently secure environment. We’ve shared a blog post, Who Has Access to What?, on how we can help answer these questions with SAS administrators in the community.

Our SAS metadata management has been fairly ad-hoc for some time? How can your Metadata Plug-ins help us?

It’s not uncommon for metadata environments to have developed organically over time. Our software gives you an easier way to investigate your current metadata, look for any issues and make corrections if needs be.

Currently, we’re administering our metadata security largely through the use of Access Control Entries (ACEs). We’d like to shift to a more robust Access Control Template (ACT) approach. Can you advise us?

You can use our ACE and ACT Reviewers, two of our Metacoda Plug-ins, to examine your current usage. You can then export HTML reports from these plug-ins to help you document this and plan your next steps.

I’d denied one of our users access to the Open Files from Local Computer capability, but he still seems to have it? How can I work out where his access is coming from?

Our Capability Reviewer lets you search to see how a specific user’s capabilities have been defined. You may find the route of this capability is through nested role membership.

I suspect that we have some roles that aren’t being used anymore and have no members. How can I find out if this is the case?

You can use our Role Reviewer to tabulate all available roles, then see if any of those roles are empty.

I’m a platform administrator for a number of software products, including SAS. One of my common tasks is to bulk load identities from our Active Directory into SAS metadata. However, I really don’t have the time to learn how to write SAS code. Are you able to help with this?

Our Metacoda Identity Sync Plug-in allows you to do just this. Additionally, you can use the plug-in to verify your load and make any required changes. All without needing to write any code.

I’d like to see from the SAS Management Console, who has access to our Oracle database and find out whether that access had been granted through a group authorization or an individual authorization.

With regards to metadata, access to a database-backed library through SAS requires:

  • a database engine library (e.g. Oracle)
  • tables registered in metadata for which they have effective grants of ReadMetadata and Read
  • a database server (configured with an authentication domain) registered in metadata that this library is associated with
  • and a user who has access to an available login (user id and password) for the authentication domain of the database server.

Our Metacoda Plug-ins can help you in these areas:

Object Permissions Explorer
Select the database library and see every identity’s effective permissions on that library; who has access and what level of access they have.

User Reviewer
Select the user and look in the Logins tab. All logins stored in metadata that the user has access to are displayed (along with authentication domain) – logins for the user themselves, logins for any direct or indirect/nested groups they are a member of, and logins on any implicit groups. Export an HTML report of all users including their accessible logins.

Identity Permissions Explorer
This is an alternative to the Object Permissions Explorer if you want to focus on the user rather than the library.

Group Reviewer
Export an HTML report of all groups, any shared logins they provide to their members, and a complete list of members (direct and indirect/nested).

Login Reviewer
This can be used to export a list of all logins in metadata – associated identity, authentication domain, user id and a flag to indicate whether a password is stored.

Testing Framework
Set up regular metadata security checks, either in batch or interactively, to look for any changes in this area.

How can I find all of the SAS OLAP cube dimensions that have had OLAP member-level security applied? Equally how can I find all of the Visual Analytics LASR tables that have row-level security applied?

Our ACE Reviewer and Protected Object Reviewer both allow you to find objects, such as SAS OLAP cube dimensions and Visual Analytics LASR tables, that have had ACEs applied to them with associated permission conditions. These permission conditions are used to implement member-level and row-level security (also known as conditional grants).

I’ve been asked to create a report for each user to see what passwords they’ve been using and which databases they have had access to. Is this possible?

Metacoda Plug-ins report which databases users currently have access to and how metadata security is currently set up. Examining historical access is something that can be done by reviewing SAS server logs or using the SAS Audit, Performance and Measurement package (APM).

If you plan to create a report detailing your users’ logins and internal SAS logins registered in metadata, you can use our Login and Internal Login Reviewers to view this and export a report to HTML.

Can I be sure that my SAS® metadata won’t accidentally be altered when I use Metacoda Plug-ins?

All of the reviewers and explorers in Metacoda Plug-ins currently only issue read-only queries to the SAS metadata server. We have deliberately not yet provided any features in the reviewers and explorers that allow you to add, update, or delete metadata (though we do get asked from time to time). The only component in Metacoda Plug-ins that does currently provide the ability to update SAS metadata is the Identity Sync plug-in. It will only provide metadata update access to unrestricted users and user administrators (as governed by SAS roles). Furthermore, the Identity Sync plug-in only updates metadata using the standard unmodified SAS User Import Macros (%MDU macros) that are very well-known and have been in trusted use by a significant number of SAS customers around the world for many years.

I’d like to see from the SAS Management Console, who has access to our Oracle database and find out whether that access had been granted through a group authorization or an individual authorization.

You can use our Role Reviewer to tabulate all available roles, then see if any of those roles are empty.

What is a Metacoda Plug-ins software license?

A Metacoda Plug-ins software license is required to fully enable Metacoda Plug-ins software. A license file is sent via email to Metacoda customers when they purchase a commercial license (or apply for an evaluation license) and after each annual renewal of the license.

What operating system can Metacoda Plug-ins be installed?

Metacoda Plug-ins are supported on any operating system where the SAS Management Console can be installed.

What languages are Metacoda Plug-ins available in?

Metacoda Plug-ins are currently available for English language platforms. Please contact us if you need Metacoda Plug-ins for any other languages.

SAS® System Requirements

Metacoda Plug-ins are designed to run within the SAS Management Console and must be installed on a workstation that already has SAS Management Console software installed.

The latest version of Metacoda Plug-ins is 6.1 and is available for use with SAS 9.4, SAS 9.3 and SAS 9.2.

SAS 9.4 SAS 9.3 SAS 9.2
Metacoda Plug-ins 6.1 x x x