Last post Feb 11, 2012 12:18 PM by ronlhurley2
Feb 10, 2012 08:15 PM|ronlhurley2|LINK
Hello, I have an issue with our instance of SSRS that no user security is required for any user to access and see all the objects in the Report Manager's home page (http://<server>/reports). There are no <domain/userid>
or <domain/groups> set up in SSRS security yet all the users in the domain have full access/visabilty to all the reports and administrator settings. It is as if all the users have been assigned administrator privledges. The Active Directory domain settings
typically are set to ALL ff/users (active directory), Domain Users, and Remote Desktop Users. The Logon user values are blank in the resreportserver.conf. I originally though the uses had their our report server URL but that does not seem to be the case.
Any assistance or suggestions would be greatly appreciated.
Feb 10, 2012 09:56 PM|ronlhurley2|LINK
Follow-up... that's I originally thought the users had their own URL... I was referring to the reportserver virtual directory which now renders the virtual directory directory listing of reports (non-graphic). The configuration manager has the web service
URL set to the server's local domain IP address. It appears that I only need to get the reportserver web page running to get the site up.
Thanks again for any assistance.
Feb 11, 2012 12:18 PM|ronlhurley2|LINK
...and some additional follow-up... all the reports for all users are accessed through the <servername>/reports which puts me back to my original issue of no security controls for users. According to Microsoft the RSWindowNegotiate tag in the rsreportserver.config
indicates that the default setting for NTLM authenication should be running in native mode with the Network Service account. Changing this account from Local System to the Network Service account renders no pages being served for anyone. (I did not try a local
administrators account.) The system has been restored back to the Local System account (again with no security).
"RSWindowsNegotiate: The report server accepts either Kerberos or NTLM security tokens. This is the default setting when the report server is running in native mode and the service account is Network Service."
Again any assistance would be appreciated...