hi i am working on SSRS report and all my reports are deployed in server with all the user permission but not sure why permission is not working sometimes when new user is providing permission.
as per my knowledge i know that i can set permission with 3 different ways.
1. Site level
2. folder Level
3. Report Level
when ever a new user need permisson to view the report, i follows the below.
Step: 1 opened the Reportmanager URL(http://toshiba-pc/MyReports) and click Home
Step : 2 clicking on "Folder Settings"
Step 3: Click on "New Role Assignment" and enter the domainname\TestUser with "Browser" role and click ok and TestUser user is automatically adding into all the folder
problem : some of user is not appearing into all folders some of the user is appearing into all folders.
to avoid above problem, i added DomainName\TestUser into folder security and it's again not appearing for all reports security , so again i have to add this user into the reports where use has not added.
this is very difficult to go each report to check whether reports has permission or not?
is there anything i am missing to configure , please let me know.
do i need to set role(system user, system administrator) for all the users to site setting. i never add user into site setting..
Please any one let me know what i am missing to configure.
Thanks
By default all permissions cascade to every item contained within the folder. This means that providing someone Browser access on the Home folder will give them Browser access to everything on the site.
This inheritance stops if at any point you have individually changed the security context of any item in the Report Manager. If you have ever done this, you will see the option to Revert to Parent Security when looking at that item's security settings:
Clicking this will remove the custom security context on that item and reset it to match the security context of the containing folder.
To find all items that have a security context different to that of your home directory so you can change them in the Report Manager (You can change this in the ReportServer database, but you run the risk of breaking your entire reporting catalogue and Microsoft will offer you no support for editing the database directly) run this query on the server which holds your ReportServer database:
select *
from ReportServer.dbo.Catalog
where PolicyID not in(select PolicyID
from ReportServer.dbo.Catalog
where Path = '' -- Home Path
and Name = '' -- Home Folder
)
Related
Do not seem to be able to find any place in the portal or Report Builder where I can actually edit the connect string & creds.
Report Manager shows the XML, but that really is it.
Disk files (from the looks of it) are no longer present in high versions (using SQL 2016/2017).
Is there a known location anywhere in GUI, or maybe direct edits in the SQL Server repository?
I can't even delete a shared source anymore, only view or test the connection.
If anybody could post a screenshot, it'll be highly appreciated.
EDIT: Just found out - when I create a new Data Source, it's editable; the imported data sources are not.
There are two ways of doing this. You can set the 'overwrite datasource' option in the project properties.
Or, you can got to the report portal , show hidden items in the view menu and there is a folder called "data sources". Open this and you will see all data sources, from there you can edit and save changes. All reports that use that datasource will be affected.
I got a report with 2 data sources and both are Shared Data source. I am trying to change both of them to Custom Data Source but when I re-upload the report in my Report Manager, it won't work.
Edit: I don't have an error because the report successfully uploads, but the data source doesn't change. If I have a field in the report, the report shows the new field, but the data source stays the same.
This might be because of caching that SSRS does with the datasource for the report on the server. Do the new datasources have the same name as the old ones?
You could create the custom datasources in the DataSources tab in the Manage menu for the report in the report manager.
To do this open up the Report Menu by click on the "..." then selecting Manage
Then click on the Data Sources Tab, then change the data source to Custom Datasource.
Then set up the datasource like you did in the report, you will need to select SQL Server for the Connection, add the connection string and choose the authentication type which in the image below is windows authentication but I am not sure how it is set up on your server. Then click Test Connection. Then Click Save (make sure you click Save before navigating away).
Or you could delete the old report in the report manager and then upload it again. Note that deleting the report will delete any schedules and other customization you have done ie. Name and Description.
Is there an error message? It won't work could be a bunch of things. I'd upload a picture of the error or whatever screen you can't get past. Let me know when you can do that, then it will be easier to troubleshoot. If you can't upload an image than I would:
Check your datasource connections are correct.
Check your datasets are using the correct connection.
This is a setting thats controlled from the deployment properties of the visual studio SSRS project. Right click the project name and select Properties. Then from the Property section of the general page notice "Overwrite Datasets" & "Overwrite Datasources". Change the one that's necessary and re-deploy to see it updated in the report portal.
I created new user - 'exampleuser' and new role - 'examplerole' in JasperReports Server version 5.6.
The new user - 'exampleuser' has 2 roles: 'examplerole' and 'ROLE_USER' that is attached to the user by default in the JR Server.
For every folder in jasper I gave the 'examplerole' and 'ROLE_USER' the permissions - Execute only.
According to my understanding, if I will login with the 'exampleuser' user I won't be able to see any folder, of course not be able to delete any file inside that folder.
What actually happens is that I'm able to see all the files inside any folder, add and delete files as I wish and change permissions to the files.
Could not find any information about it - according to the JasperReports Server manual I'm not doing anything wrong or do I?
The 'exampleuser' doesn't have any permissions to the folder e.g. 'NO ACCESS' permission.
And there were no errors in the logs.
Is someone ran into this situation before? Is it fixable or it is some bug of JasperReports Server?
-----------------------------EDIT---------------------------------------
I've found out that this situation happens only in Google chrome browser. If I use IE for example, everything is as it should be.
Anyone? Any idea?
Edit user(exampleuser) and assign only new role(examplerole) which you created for new user remove ROLE_USER and save.
Now right click on the folder on which you want to give permission to new user(exampleuser) and select "Permission" , there you can see all the roles and there access permission.
Change permission No Access to Read only for examplerole and remove the access form other roles i.e. select No Access option.
Now after that you need to check remaining other directories whether they have ROLE_USER access or not , if they have remove permission from ROLE USER i.e set it to No Access.
I am currently using an access DB with front and back end. When I want to allow new users to access the DB I add the user to the folder in which the DB is housed. Essentially if they determined the path of the DB they could copy it ect.
Is there anyway to still allow access to the DB through the Access front end yet still prevent the user from actually getting to the directory of the file.
Thanks in advance for all your help.
No there isn't access is a file based dbms. For the app the user is running as to see the file, the user has to be able to.
This is the sort of need that says access cannot be used. Well not directly , you could use access as a backend, ie you park it behind some sort of service and your front end hits that.
yo keep an integral copy for you in case of changes then with the pblic copy, for example
with Access 2007 you click files -> Options -> active data base -> Navigation Options.
then you hide all the elements...
With the admin user I can do everything, add, delete, modify, etc. As it should be.
Then using this user added a new one, with full access to sales and accounting options as some other ones needed for sales operations. Then tried to add a new supplier and it throws a warning:
Access Denied
The requested operation cannot be completed due to security restrictions.
Please contact your system administrator.
(Document type: Pricelist, Operation: read)
Tested all the possible combinations on user rights and ended up giving full access to all options. Nevertheless I'm unable to create any new contact/customer/supplier/etc with this user. I'm running out of options, I don't know what else to test or where to look.
EDIT
Got an answer on the brand new OpenERP discussion site recommending to uncheck the Portal user rights for the user. Uncheking it partially worked. The warning still appears but when I click OK, fill the supplier and save, the new supplier is added without errors. Any recommendation?
I really think that's not a bug.
it's a conflict of "Rights" (in Access rules and ACL).
A "Portal or Anonymous" user, is an external user (from the company) and have only some limited rights for accessing some public informations or it can be an exteranl partner which can access his private documents and informations related to his relation with this company.
A normal OpenERP user (a company employee with some or all rights "let's call it an internal user") can't be and should not be in the same time a "Portal or Anonymous" user (with very limited rights), and vice-versa.
Just uncheck these two options for an internal OpenERP user.
Is a reported bug that seems to be related to multi-company option selection and user rights.
Go to multi company Access Denied Document type: Partner, Operation: read where the bug was reported and is followed up by other users. Hope a patch is created soon.
I agree, I don't think that's a bug.
I got that error with a user when I created an employee linked to this user.
You have to be at least an employee from the society to add a new client.
Link to create a new employee :
http://yoururl:PORT/?ts=1369948181483#view_type=kanban&model=hr.employee&menu_id=273&action=328
I got the error when I granted Portal rights to a contact/customer, then when a Quotation is sent (testing), opeing the Quotation yields the error message:
Access Denied
The requested operation cannot be completed due to security
restrictions. Please contact your system administrator.
(Document type: Partner, Operation: read)
However, clicking OK, can get past it and proceed to pay. This is a major ongoing sort of issue with OPENERP. It should be fixed by now...
I just faced a similar problem, may solution was to add a record rule for the Administration / Settings group, here is how:
1- Go to Settings->Groups and select Administration / Settings. (Make sure this group is assigned to de new user)
2- Click the Edit button and go to the Rules tab. (It should be empty)
3- Click the Add button, this action open a modal window, click the Create button on it.
4- Give the new rule a semantic name - e.g. Partner: administration settings: see all - and make sure all the access rights are selected.
5- In the object drop down type res.partner, it will allow you to select the object named Partner referenced in the error.
6- Click the Add button in the Groups section and select the Administration / Settings group.
7- Finally click the Save & Close button and save the group changes by clicking the Save button.
Hope this is helpful for beginners in OpenERP. Actually I already have used this solution patter more than once for similar error related to permissions a given user was expected to have.
Its a rules issue. Deactivate the rule Product Template . Rules overrule access writes setup under the user setup. So it looks like users have identical access but these rules bypass your customisations.
i think you should active developer mode, and go to setting/user -> select the user have this error. Then click edit and uncheck public in "Other Extra Rights" section. After that, click save.