.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

SSRS custom security extension behind a router fire wall not working

Posted By:      Posted Date: September 10, 2010    Points: 0   Category :Sql Server
I have a instance of SSRS 2008 installed (we are not using IIS) with custom security extension which accepts a application user ID and password and sends back a sql authorization cookie back to client for logging into SSRS.  The (SSRS) server is behind a router,  SSRS is configured on port 81,  Port 81 in router if forwarded to the SSRS server. Here is the problem If I am inside the router firewall (RDP'ed to the machine) I am able to access report server (http://xx.xxx.xxx.xx:81/ReportServer) and reports manager (http://xx.xxx.xxx.xx:81/Reports) without any issues. If  am outside the firewall and try to go to report server page (http://xx.xxx.xxx.xx:81/ReportServer) from browser and try to login it works (I am getting the cookie back and authentication goes through fine).   But if I try to access reports manager (http://xx.xxx.xxx.xx:81/Reports) the login page shows up when I enter user ID and password and hit enter to authenticate it comes back to the login screen (I am not gettint the cookie back from SSRS). Any help is highly appreciated on how to debug /fix this issue. Note : if I first login to Reportserver (which sends the cookie back) and in the same session I login to Reports Manager I am able to get into Reports Manager page since I got the cookie when I logged in to reports server page already.  When I

View Complete Post

More Related Resource Links

Need help setting up a Custom Security Trimmer, CheckAccess method not working.


I'm implementing the custom security trimmer for SharePoint server as outlined here: http://msdn.microsoft.com/en-us/library/ee819923.aspx

I have been able to successfully deploy the solution on to the server, but know I need to write the script that will check whether users have access to particular documents or not. The code in the walk-through is the following:

public BitArray CheckAccess(IList<String> documentCrawlUrls, IDictionary<String, Object> sessionProperties, IIdentity passedUserIdentity)
            BitArray retArray = new BitArray(documentCrawlUrls.Count);
            //Use passedUserIdentity to get the identity of the user who issued the query.
            IClaimsIdentity claimsIdentity = (IClaimsIdentity)passedUserIdentity;
           //IClaimsIdentity is defined in Microsoft.IdentityModel.Claims;
            for (int x = 0; x < documentCrawlUrls.Count; x++)

Access report server database connection information from custom security extension



Is there any way from my custom security extension that I can get to and unencrypt the database connection information held within the RSReportServer.config file?



Geneva Framework: Building A Custom Security Token Service


A Security Token Service, or STS, acts as a security gateway to authenticate callers and issue security tokens carrying claims that describe the caller. See how you can build a custom STS with the "Geneva" Framework.

Michele Leroux Bustamante

MSDN Magazine January 2009

Desktop Security: Create Custom Login Experiences With Credential Providers For Windows Vista


Why is a change to the Windows logon plug-in interface so exciting? Because with credential providers you can customize the logon experience for your users.

Dan Griffin

MSDN Magazine January 2007

SharePoint Designer: insert custom list not working anymore



Suddenly sharepoint designer decided today that it doesn't want to insert a custom list form anymore...
To be more specific, it doesn't work anymore in a site that uses the Microsoft budgeting and tracking template. In a website that uses an out of the box template, it still works.

It did work before, because I did it in other websites using the same template (it's broken there as well now).

Why oh why does SharePoint refuse to do this now?
I searched google and here on the forums, but all I could find was some issues after installing SP1, but we did that already long time ago and it was still working after that. I checked with our infrastructure guys and they didn't install new updates they say.

I also tried the solutions listed here: http://blogs.msdn.com/spdsupport/archive/2008/07/03/how-to-fix-custom-list-forms-will-not-insert-or-show-up-on-the-design-surface-of-sharepoint-designer.aspx
But they don't fix the problem.

So my problem is, I can go to Insert > SharePoint Controls > Custom List Form
I pick my list, content type and form type, I hit OK and... nothing happens.

Custom security via connection string

Hi Is it possible to pass information into the SQL Server relational engine via the connection string in the same way as it can be done for Analysis Services? I need to generate a user context for a forms authentication application (i.e. no windows user accounts). SSAS allows you to pass in a list of database roles or a customdata parameter on the connection string. These can be used inside the database in lieu of a windows identity. I am wondering if there are equivalent parameters available for the SQL connection string.  I guess that I could create SQL logins from each of the forms users with a system generated password and then pass the uid and password on the connection string but this seems unnecessarily complicated. Andrew Wiles - www.it-workplace.com - MDX made simple

Custom event does not fire

Hello,I have a base server control class for all my user controls. Inside this class I have the following declaration:#region Event Handling Management public event EventHandler ItemSaved; public event EventHandler ItemCancelled; protected virtual void OnItemSaved(EventArgs e) { if (this.ItemSaved != null) { this.ItemSaved(this, e); } } protected virtual void OnItemCancelled(EventArgs e) { if (this.ItemCancelled != null) { this.ItemCancelled(this, e); } } #endregion Concrete user controls used in the application are used always inside a ModalPopupExtender object and the popup it is always handled with server-side code. This means that there are no controls binded to the OkControlID and CancelControlID properties of the ModalPopupExtender.The responsibility to show the Modal Popup is then given to the aspx that has code like thisin the ASPX file...<gsl:PhoneNumberUC ID="ucPhoneDetail" runat="server" />in code behind...protected void Page_Load(object sender, EventArgs e) { if (!IsPostBack) { //Bind to the event handler ucPhoneDetail.ItemSaved += new EventHandler(ucPhoneDetail_ItemSaved); ucPhoneDetail.ItemCancelled += new EventHandler(ucPhoneDetail_ItemCancelled); } } protected void btnNewPhone_Click(object sender, EventArgs e) { //Show the Modal Popup this.mpePopupPhone.Show(

How do you add duplicate fields to a SSRS custom report and receive differtent output values.

I have built a custom report in SSRS 2008 using fields for supplier and customer.   I have added a Parent Row Group using the Supplier field for the group expression and used the Customer Details as my child details group. This returns a list of all customers for each supplier.   (Supplier | = Customer details ( Name, Dob etc.)   How would I add an additional Supplier field to the customer details returning only values for other Suppliers used by a customer, not the value of the Supplier listed in the Parent Group?

Custom actions and URL tokens when working with the Ribbon

I'm trying to add a new item to the Ribbon using a custom action in a VS SP2010 project. The new action shows up where we want it but the problem we are facing is that tokens like {ItemId} or {SelectedItemId} are not parsed when used in the CommandAction attribute. I would like to use these tokens and construct a URL pointing to an application page we've created. In the same way one can do using UrlAction when adding custom actions to the ECB menu (this is working fine in our project). The custom action below simply prints out different tokens. When run it seems like the tokens {SiteUrl},{SelectedListId} and {SelectedItemId}are parsed but for me both SelectedListId and SelectedItemId are null. Are there any other tokens that can be user or is there a better way to get hold of the item and list for the context? <?xml version="1.0" encoding="utf-8"?> <Elements xmlns="http://schemas.microsoft.com/sharepoint/"> <CustomAction Id="{1f2da003-2069-4d4a-8fc5-1deeb98ecdda}" Location="CommandUI.Ribbon" Sequence="20"> <CommandUIExtension> <CommandUIDefinitions> <CommandUIDefinition Location="Ribbon.ListForm.Display.Manage.Controls._children"> <Button Id="{ca157255-5ef3-4f1c-bcb6-6ff5ff7610fe}" Command="{7887e42e-

Passing values from web page to custom security trimmer in SharePoint 2010

Hi, In SharePoint 2007 we had a custom security trimmer that implemented ISecurityTrimmer interface. We also had a custom webpart used for search. Now, using HttpContext we passed values from the webpart to security trimmer with additional info needed to trim the results. It worked since trimmer was executed in the same w3wp process as webpart. Now in SharePoint 2010, the architecture for ISecurityTrimmer2 has changed, as it's executed in search process (other w3wp) - not the webpart w3wp so it has no access to the HttpContext. Question is: how to pass custom data, in form of the string, to a security trimmer when search is done from custom code in webart?

SSRS Table Header working differently in and out of print layout

Please help. This is bizarre and seems like a bug to me. Using a table in SSRS, I have a details row, with a parent group and finally a header row.  For my header row, I am referencing a particular cell in the parent group. I am doing this so that i can have the header row repeat on each page of the group. This works fine when I'm not in Print Layout mode. However, when i switch to print layout mode, or print the report itself, the data that is presented on the screen is different then what is presented when not in print layout mode. WHAT THE F*!@!?? I've been battling this for a while now and i'm at my wits end. Has anyone else experienced different results from when you are in print layout mode as opposed to being in print layout mode?

Custom markup extension or custom binding class?

Hey experts! I'm doing a project where I've encountered an issue I'd love some feedback on. I've created a custom Markup Extension called MyMarkupExtension, with two properties.  I can use it like below: <cc:DialogBorder Title="{local:MyMarkupExtension MyProperty='property value goes here', AnotherProperty='and another value here'}"> It works, and in 99% of the cases, it fits my needs perfectly.  In 1% of the cases, the values of MyProperty and AnotherProperty can not be set at design time, so I'd need some binding there. <cc:DialogBorder Title="{local:MyMarkupExtension MyProperty={Binding Path='SomePropertyOfTheViewModel'}, AnotherProperty='and another value here'}"> This presents my two questions (yes I did make only one post for 2 questions, bad karma...): 1. the binding inside my markup is not legal, after all, a binding can only be set on a DependencyProperty.  Is there any workaround which I could use for this problem at hand? In case there isnt... 2. I'm thinking about dropping the markup extension and creating a custom binding instead.  For this, I'd have to inherit from bindingbase, and so far I've read online that's one ____ of a nightmare.  Does anyone have some good code / examples on where to start? "The improbable we do, the impossible just takes

Report Level Security in SSRS using Tsql

So i am Brand new in this area i have developed reports before and deployed them but never got an oppurtunity to work on security and who gets to see what.. Purpose of the view is thats what im thinking..   We have a reports database has 100 reports . What we are trying to do is have a faster way to manage report subscriptions. The tables i have is Analysts, SalesRep,SalesRepSubs and dbo.users.Dbo users are our web portal users where they can view reports. I want to create a table in which every report is viewed per security level. We have 6 layers of security layer 1 is lowers to layer 6 being highest. This is the relationship between tables Salesrep(SRID PK) Salesrep_sub (SRID_SUBID PK) Analysts : (AnalystIDPK) Users: The Table has all Users who are Salesrep,Sales Repsub and Analysts)(PKID PK) and we have cols SRID, SRID_SUBID & AnalystID) in this table. use Pricing go Alter View dbo.User_Access   AS select S.SR_name,u.SRID,sr.SRsub_name,u.SRID_SubID,U.Userid,u.username,u.Email, u.SecurityLevel,a.AnalystID from dbo.Users u join tbl_Analyst a on a.AnalystID=u.UserID join tbl_SalesRep s on s.SRID=u.SRID Join tbl_SalesRep_Sub sr on sr.SRID_SubID=u.SRID_SubID My question is what do i do next? Add this view to Report server? or how can i make it functionl?????????FM

Question on Custom Delivery Extension

All, I want to add new File Based report subscriptions option as "Custom CSV Format". I am bit confused about Custom Delivery Extension and Custom Rendering Extension. My question is for this requirement, should I create Custom Delivery Extension or Custom Rendering Extension? Becaue What I see in rsreportserver.config file, the Rendering Extension defined under <Extension></Extension> tag are available for File Based report subscriptions So is there any relationship between them? Please point me to right direction.

Question on Custom Delivery Extension

All, I want to add new File Based report subscriptions option as "Custom CSV Format". I am bit confused about Custom Delivery Extension and Custom Rendering Extension. My question is for this requirement, should I create Custom Delivery Extension or Custom Rendering Extension? Becaue What I see in rsreportserver.config file, the Rendering Extension defined under <Extension></Extension> tag are available for File Based report subscriptions So is there any relationship between them? Please point me to right direction.

Report subscriptions fail due to security extension exception

Hi,     We are using SSRS 2008 with Custom Security extension for all authentication and authorization.     When trying to use report subscription attaching actual reports (not a link to the report), we get the following error. Question:       1. Can we use report subsription (as attachment) with custom authentication?       2. Can we use external email addresses for email subscription? Actual Error: processing!WindowsService_10!1130!07/08/2010-11:35:11:: w WARN: Data source 'Historic_Agreement_Report_Model': Report processing has been aborted. processing!WindowsService_10!1130!07/08/2010-11:35:11:: e ERROR: Throwing Microsoft.ReportingServices.ReportProcessing.ProcessingAbortedException: An error has occurred during report processing., ;  Info: Microsoft.ReportingServices.ReportProcessing.ProcessingAbortedException: An error has occurred during report processing. ---> Microsoft.ReportingServices.Diagnostics.Utilities.ServerConfigurationErrorException: The report server has encountered a configuration error.    at Microsoft.ReportingServices.Library.Security.get_AuthorizationExtension()    at Microsoft.ReportingServices.Library.Security.get_CachedAuthorizationExtension()    at Microsoft.ReportingServices.Library.Security.CheckAccess(I

current user identity in custom security trimmer

The crux of my problem is that I want to impersonate  a user’s NTLM credentials in the context of a SharePoint custom security trimmer to execute HttpWebRequests to check user access to URLs.  When accessing WindowsIdentity.GetCurent() in the security trimmer, the System.Security.Principal.WindowsIdentity object returns the identity of the application pool running the search query service, NOT the currently logged in user.   When accessing System.Threading.Thread.CurrentPrinciple.Identity in the security trimmer, the Microsoft.IdentityModel.Claims.ClaimsIdentity object of the current logged in user is returned.  However, there is a catch.  …   If I execute the following code in a .NET web application, the cast of the ClaimsIdentity to a WindowsIdentity succeeds because the identity has the authentication type of NTLM.    WindowsIdentity winId = (WindowsIdentity)System.Threading.Thread.CurrentPrincipal.Identity; WindowsImpersonationContext wic = winId.Impersonate(); request.Credentials = CredentialCache.DefaultCredentials; //access means a response comes back when a request is made to the url using (HttpWebResponse response = (HttpWebResponse)request.GetResponse()) { returnStatus = true; } wic.Undo(); However, when I execute the same code in the context of the SharePoint security trimmer (the search query service li
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend