Starting in SASHFADD 2.2.6, when the Analysis_Report_ generated by SASHFADD analyzes a SAS 9.4_M9 deployment on Microsoft Windows or UNIX, it contains a section called SAS Security Update. This section is not displayed when SASHFADD analyzes an MVS or z/OS deployment.

If SASHFADD cannot find the SAS Security Update installed with your SAS 9.4_M9 deployment, a message is displayed in this new section that directs you to this SAS KB article that you are reading now.

Please review the instructions in Applying SAS Security Updates and Hot Fixes, and then download and apply the SAS Security Update to your SAS 9.4_M9 deployment.

After the initial installation of the SAS Security Update, one of the following is displayed the next time you run SASHFADD:

• If SASHFADD detects that the SAS Security Update installed with your SAS 9.4_M9 deployment is NOT the current one, then SASHFADD notifies you that your SAS Security Update needs to be upgraded. You will be directed to Applying SAS Security Updates and Hot Fixes to download and apply the latest SAS Security Update.
  
  
  • Important! If a new SAS Security Update is installed on your system, you must rebuild and redeploy your web applications. For more information, refer to the “Rebuild and Redeploy Web Applications” section of Applying SAS Security Updates and Hot Fixes.
    
    
• If SASHFADD detects that a SAS Security Update installed with your SAS 9.4_M9 deployment is the current one, then SASHFADD notifies you that your SAS Security Update does not need to be upgraded.

If you do NOT want SASHFADD to monitor the status of your SAS Security Update, you can turn off this feature in the SASHFADD.cfg file by uncommenting the following line:

-DO__NOT__MONITOR_THE_STATUS_OF_THE_SAS_SECURITY_UPDATE

SAS Technical Support recommends that you do NOT activate this option in the SASHFADD.cfg file because of the importance of having the current SAS Security Update installed on your system.