.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Register
 
Win Surprise Gifts!!!
Congratulations!!!


Top 5 Contributors of the Month
MarieAdela
Imran Ghani
Post New Web Links

SSRS Security Management

Posted By:      Posted Date: October 23, 2010    Points: 0   Category :Sql Server
 

Hi

I have an issue in security management. We have many folder under home. Say A, B, C...

Now i want to give brower permission to Home-> C folder-> reports to a user user1.

But when i try to do it, user1 can able to view all the folders (A,B and C)

Pls help how to restrict the access in viewing other folders for the user1.


- Kerobin


View Complete Post


More Related Resource Links

Security: Unify Windows Forms and ASP.NET Providers for Credentials Management

  

The .NET Framework 2.0 provides custom credentials management to ASP.NET apps out of the box. Using it, you can easily authenticate users without using Windows accounts. In this article the author presents a set of helper classes that let a Windows Forms application use the ASP.NET credentials management infrastructure as easily as if it were an ASP.NET application.

Juval Lowy

MSDN Magazine April 2005


SSRS Subscription Management: Restart, Stop, View Status, update properties, etc

  
As SSRS admins, there are times when a user comes to us and ask: I didn't get my reported emailed to me today?or worst, a report subscription going to multiple people doesn't run and now you have lots of people missing their subscription - (suppose server crashed, or something happened).One idea of course would be to have the subscription owner re-schedule it to run now, or create a new -- but - i'm thinking - we should create a subscription adminstration tool.a .net app that queries the ssrs web service, gets a list of subscriptions in the ssrs system (or perhaps by folder) and then is able to 'restart a subscription', "stop a running one", 'view all subscription status, schedule, owner, etc' if I wanted to d this - what is the web service that I could use this for?and most importanly - has anybody dont anything like this that they can share?this is for ssrs 2005 & and I'm hoping 2008 can be called through the same .net app tool

Report Level Security in SSRS using Tsql

  
So i am Brand new in this area i have developed reports before and deployed them but never got an oppurtunity to work on security and who gets to see what.. Purpose of the view is thats what im thinking..   We have a reports database has 100 reports . What we are trying to do is have a faster way to manage report subscriptions. The tables i have is Analysts, SalesRep,SalesRepSubs and dbo.users.Dbo users are our web portal users where they can view reports. I want to create a table in which every report is viewed per security level. We have 6 layers of security layer 1 is lowers to layer 6 being highest. This is the relationship between tables Salesrep(SRID PK) Salesrep_sub (SRID_SUBID PK) Analysts : (AnalystIDPK) Users: The Table has all Users who are Salesrep,Sales Repsub and Analysts)(PKID PK) and we have cols SRID, SRID_SUBID & AnalystID) in this table. use Pricing go Alter View dbo.User_Access   AS select S.SR_name,u.SRID,sr.SRsub_name,u.SRID_SubID,U.Userid,u.username,u.Email, u.SecurityLevel,a.AnalystID from dbo.Users u join tbl_Analyst a on a.AnalystID=u.UserID join tbl_SalesRep s on s.SRID=u.SRID Join tbl_SalesRep_Sub sr on sr.SRID_SubID=u.SRID_SubID My question is what do i do next? Add this view to Report server? or how can i make it functionl?????????FM

Report Level Security in SSRS using Tsql

  
So i am Brand new in this area i have developed reports before and deployed them but never got an oppurtunity to work on security and who gets to see what.. Purpose of the view is thats what im thinking..   We have a reports database has 100 reports . What we are trying to do is have a faster way to manage report subscriptions. The tables i have is Analysts, SalesRep,SalesRepSubs and dbo.users.Dbo users are our web portal users where they can view reports. I want to create a table in which every report is viewed per security level. We have 6 layers of security layer 1 is lowers to layer 6 being highest. This is the relationship between tables Salesrep(SRID PK) Salesrep_sub (SRID_SUBID PK) Analysts : (AnalystIDPK) Users: The Table has all Users who are Salesrep,Sales Repsub and Analysts)(PKID PK) and we have cols SRID, SRID_SUBID & AnalystID) in this table. use Pricing go Alter View dbo.User_Access   AS select S.SR_name,u.SRID,sr.SRsub_name,u.SRID_SubID,U.Userid,u.username,u.Email, u.SecurityLevel,a.AnalystID from dbo.Users u join tbl_Analyst a on a.AnalystID=u.UserID join tbl_SalesRep s on s.SRID=u.SRID Join tbl_SalesRep_Sub sr on sr.SRID_SubID=u.SRID_SubID My question is what do i do next? Add this view to Report server? or how can i make it functionl?????????FM

SSRS custom security extension behind a router fire wall not working

  
I have a instance of SSRS 2008 installed (we are not using IIS) with custom security extension which accepts a application user ID and password and sends back a sql authorization cookie back to client for logging into SSRS.  The (SSRS) server is behind a router,  SSRS is configured on port 81,  Port 81 in router if forwarded to the SSRS server. Here is the problem If I am inside the router firewall (RDP'ed to the machine) I am able to access report server (http://xx.xxx.xxx.xx:81/ReportServer) and reports manager (http://xx.xxx.xxx.xx:81/Reports) without any issues. If  am outside the firewall and try to go to report server page (http://xx.xxx.xxx.xx:81/ReportServer) from browser and try to login it works (I am getting the cookie back and authentication goes through fine).   But if I try to access reports manager (http://xx.xxx.xxx.xx:81/Reports) the login page shows up when I enter user ID and password and hit enter to authenticate it comes back to the login screen (I am not gettint the cookie back from SSRS). Any help is highly appreciated on how to debug /fix this issue. Note : if I first login to Reportserver (which sends the cookie back) and in the same session I login to Reports Manager I am able to get into Reports Manager page since I got the cookie when I logged in to reports server page already.  When I

Sharepoint + SSRS -Report Security??? An unexpected error occurred while connecting to the report s

  

I am able to deploy reports and run them as the farm admin that I did the Grant entry for in CA > App Mgt > Reporting Services > Grant DB access.

 

However, my AD personal user that has Local admin on every server has integrated SA security to the SSRS and Sharepoint Database is a Farm admin get's this error trying to run the reoprts.

 

An unexpected error occurred while connecting to the report server. Verify that the report server is available and configured for SharePoint integrated mode.

 

Now if I log in as the farm admin ( the user I did the grant on) I can run and add the reports to the SSRS webpart... Am I going to have to add every user through that Grant feature? With integrated Sharepoint security there is no /reports virtual to decide what users can run  what reports so I'm not sure..

 

Some  other details.. I'm using Kerberos security, and CA > App mgt > Reporting Services > Manage integration mode is set to Trusted (not Windows).. otherwise .. I can't pull up Default settings under that Reporting Services section of CA.

 

I also d

SSRS and "For security reasons DTD is prohibited in this XML document..." error HELP PLEASE!

  

Hello,

I need some help here. We've had SSRS on our production server up and running for several months, after moving from another server that ran for a few years with no issues. Suddenly, 10 days ago we are getting this error, and I haven't figured out why.

1.     When rendering a report, we receive this message after a few seconds: “For security reasons DTD is prohibited in this XML document. To enable DTD processing set the ProhibitDtd property on XmlReaderSettings to false and pass the settings into XmlReader.Create method.”

 

SharePoint 2010 Security (Prompts for Login) Issue with SSRS report with Out of Box Web Part

  

Hi All,

I have a SSRS Customized Report (.RDL). I have a web part with association on one of the report. When I try visit the page I am prompted for credenatial.

My Data Source Properties are as per below

Use this user and Password

  user name: domain\myadminuser

  password:****

Selected: use as win auth

Selected: Impersonate

 

How Can I get rid of prompt?

 

 

 

 


Pathik

SharePoint 2010 Security (Prompts for Login) Issue with SSRS report with Out of Box Web Part

  

Hi All,

I have a SSRS Customized Report (.RDL). I have a web part with association on one of the report. When I try visit the page I am prompted for credenatial.

My Data Source Properties are as per below

Use this user and Password

  user name: domain\myadminuser

  password:****

Selected: use as win auth

Selected: Impersonate

 

How Can I get rid of prompt?

 

 

 

 


Pathik

SSRS Audit Trail Security Issue

  

One of my reports has tight security issues that come with it. I have integrated windows authentication so that the logged in user's credentials are passwed as a parameter to the stored procedure that is called. That parameter is marked as HIDDEN, which works perfectly for ad-hoc calls by end users to the report.

My security loophole seems to come in when the end user schedules a subscription. The "user id" parameter is then no longer hidden and the end user can schedule the report to run with any other user's id that they wish to.

If the subscription is still in the system I can read the Subscriptions table and see that "Bob" has asked for the report to run as though it is really "Sam." But the problem is if they remove that subscription, the ExecutionLog records the fact that the report was run for "Bob" as the parameter, but it runs under the admin account of course, and there is no record (that I can find) of who the report was emailed to.

Is there a way I can find out who reports were emailed to when they were executed as subscriptions?


Database security, can't deploy from some databases, can others...all in the same SSRS Project

  

Hi,

1.) I just installed SQL Server 2008 including SSRS.  I created a simple database.  I then created an SSRS project and wrote a report using my simple database.  It built and deployed fine.

2.) I downloaded the AdventureWorksDW2008 database.  In the same Project as above, I created another report using AdventureWorksDW2008 as a Datasource.  It previewed fine and I saw my data.  The project with the two reports built fine, but the AdventureWorksDW report did not deploy (but the first report would???)  The deployment would eventually timeout.  The project would deploy except for the AdventureWorks report.

3.) I scripted the AdventureWorksDW2008 database, changed only the name in the script to AdventureWorksDW20082 (through out the script) and ran it.  I created the new database (AdventureWorksDW20082) and a simple table with data.

I added a third report to the project the queried my new database (AdventureWorksDW20082).  This report  deployed fine.

...

It seems if I create the database there is no problem deploying, but the AdventureWork database I downloaded, I can't deploy!!!  I can query and preview the data in a report in BIDS, but deployment fails due to a timeout.

Does anyone know where I should start looking? 

It must be some permission

Error while trying to connect with SSRS through Sql server management studio

  

Hi

I have installed SQL Server 2008 R2 on my system. Reports manager is working fine for me, but when I tried to connect to Reporting service instance using SSMS, I got the following error. I am not able to understnad why it is happening.

TITLE: Microsoft SQL Server Management Studio
------------------------------

Failed to retrieve data for this request. (Microsoft.SqlServer.Management.Sdk.Sfc)

For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&LinkId=20476

------------------------------
ADDITIONAL INFORMATION:

The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. (System.Web.Services)

------------------------------

The remote certificate is invalid according to the validation procedure. (System)

------------------------------
BUTTONS:

OK
------------------------------


SSRS 2008 - Vista Security - Header Only

  
I installed SQL 2008 Developer and Reporting Services on my Vista Ultimate x64 box.  The box is a new rebuild and only has drivers and windows updates on it.  During the setup of SQL I told it to use my login as the account to run all the SQL services as including Reporting Services.  I also used the default configuration for SSRS during the setup. 

The problem I am having is everytime open http://<mycomputer>/reports I only see the header.  I am almost sure it is a security thing because if I browse to http://<mycomputer>/reports/pages/SystemSecurity.aspx I get a "You do not have permission to access this page". 

Another problem is everytime I first load http://<mycomputer>/reports it also asks me to log in.  I type in my account information that I am currently logged in as and it lets me in but again I only see the header.  I have added http://<mycomputer> as a trusted site while running IE as administrator but it did not help. 

Please help, all the google docs I keep finding only apply to SSRS 2005.

SharePoint Tutorial - Security

  
Security in SharePoint is comprised of users, groups and roles.



Users, Groups and Roles

Users
A user account comes from the authentication system. For example, if Active Directory is used to authenticate then the user accounts will come from it.

Groups
There are two types of groups SharePoint uses: domain groups and SharePoint groups.

Asp.net web site security database

  

Hello all, I'm new to asp.net and I'm currently practising some few stuffs. I'm creating a hotel reservation system using ASP.net Web site in visual studio 2008 and I currently don't have an App_Data in my solution explorer unlike visual web developer.

1. I have planned to make users of the website login before making their reservations.

2. I have also planned to develop the website such that I will be able to know all reservations made by each user.

First and formost, I will like to know how I can access/View the security database?

Secondly, how do I link my custom made reservation database and the security database in order to achieve my second plan above.?


Someone help me.


Thank you.


System.Security.SecurityException:

  

hello i have the following problem

i have upload my content to hosting server but i get the following error

Security Exception

Description: The application attempted to perform an operation not allowed by the security policy.  To grant this application the required permission please contact your system administrator or change the application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Request for the permission of type 'System.Web.AspNetHostingPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:

[SecurityException: Request for the permission of typ
Categories: 
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend