SSLCERTLOC= System Option

Specifies the location of the digital certificate that is used for authentication.
Client: optional
Server: required
Valid in: Configuration file, OPTIONS statement, SAS System Options window, SAS invocation, SAS/CONNECT spawner command line
Category: Communications: Networking and Encryption
PROC OPTIONS GROUP= Communications
Operating environment: UNIX, z/OS
Tip: When additional encryption options are specified on the spawner command line, the options must be included in the -SASCMD value. The spawner does not automatically pass the encryption values. For detailed information about -SASCMD, see Starting the UNIX Spawner in Communications Access Methods for SAS/CONNECT and SAS/SHARE and Options to Start the z/OS Spawner in Communications Access Methods for SAS/CONNECT and SAS/SHARE.
SSL for a SAS/CONNECT UNIX Spawner: Example

SSL on a z/OS Spawner on a SAS/CONNECT Server: Example

SSL for SAS/SHARE under UNIX: Example

Syntax

SSLCERTLOC=“file-path

Syntax Description

file-path
specifies the location of a file that contains a digital certificate.

Details

The SSLCERTLOC= option is required for a server. It is required at the client only if the SSLCLIENTAUTH option is specified at the server.
If you want the spawner to locate the appropriate digital certificate, you must specify both the -SSLCERTLOC and -SSLPVTKEYLOC options in the -SASCMD script.
The certificate must be PEM-encoded (base64). Under z/OS, the file must be formatted as ASCII and must reside in a UNIX file system.