i developed one report in ssrs 2008 and then deployed it , after that i sent URL to others for checking purpose.
but whenever other colleges are using my URL then it is asking username and password to them.
how can i overcome this issue.
thanks in advance
as this report is in your ssrs, the other users must enter your credential to access it... there is no way you can overcome it.
It is possible that your ReportServer needs to be setup with Windows Authentication to allow users of your intranet to access the reports using their own credentials. If the users are external to your network, then maybe look at the other options (basic, forms etc) available for authentication.
you have to set this property in order to turn off prompting for server login EnableDatabaseLogonPrompt="False"
Related
I have a working implementation of SAML (OneLogin) within an enterprise architecture.
When a guest user arrives at my application they are redirected to the company login where they enter their username / password. After that the user identity is passed back to my application and we log them in.
However, I notice that in other applications within the company I do not have to login at all. Somehow the website "knows who I am" and seems to authenticate me automatically. I presume there is some form of certificate on my pc / browser which the other applications are passing to the SAML??
Can somebody tell me the technical term or process? Is there a process whereby I simply pull the certificate from the browser or PC and pass it to the SAML? I would like my users to be able to auto-login without entering their credentials.
Thanks
There's a number of mechanisms that support an "automatic" authentication like what you describe. In the Identity and Access Management (IAM) realm, we have all sorts of names for it, but many of us call that "seamless single sign-on (SSO)".
Within a corporate environment, I would suspect that you are dealing with a one of two mechanisms: Kerberos authentication (especially if you're a Microsoft shop and log in to a domain-joined machine on a daily basis), or your machine is in an MDM-type of system, which uses a machine- and/or user-based certificate (aka PKI) to authenticate the user or user/machine combination.
Within your enterprise, if there are other applications whose users are immediately authenticated to the application without entering their username and password, then you should talk to your IAM team or your Single Sign On (SSO) administrators to understand why that doesn't work for yours.
I will also say that it's possible that your security team evaluated what information your application offers (insider financials? source code? your secret recipe? credit card data?) and decided that they would still require the user enter their username and password to get access to the data. So when you go to your SSO admins to ask, if they say that it's intentional, you should feel free to ask why and who you should talk to about it.
After a LOT of research and testing I finally have the answer to this question, and it is incredibly simple!
In summary:
I have a working solution with OneLogin that sends me to a page like this:
https://sts.companyname.com/adfs/ls
The url is specified in the config: saml->config->idp->singleSignOnService->url
However, this page requires the user to enter their username and password and, instead, I would like the system to be fully seamless.
The solution, it turns out, is simply to hyperlink to the following url:
https://sts.companyname.com/adfs/ls/IdpInitiatedSignon.aspx?LoginToRp=https://mypage.com/saml/metadata
where "loginToRp" url is the url provided in saml->config->sp->entityID
The ADFS IDP Initiated Signon will connect to your metadata schema and automatically log the user in (without the user needing to provide any credentials)
NOTE: this only applies to intranet sites in a corporate environment
I have a SSRS report for which the Datasource is connected via Database credentials. Now I wanted to restrict a parameter dropdown based on the user using the report.
I tried impersonating the user but it didnt work.
I tried getting the User!UserID within SSRS, but it didn't work.
How can I get the Windows login of the user? Is there any other way or am I missing anything?
Edit -
Not everyone in the organisation has got access to the Database, hence we use the Database user login. But we have a table which holds the AD login and using that I need to restrict the drop down lists in the parameter.
You'll have to change the credentials on the datasource to use windows authentication. If this is a shared datasource you might have to create a new datasource that use windows authentication and point your datasets to that instead.
I have a problem with SSRS 2014. I am trying to browse to a data source on my server see pic0. I then get the error in pic1. I cannot browse to it in IE either pic2. Pic3 is from the site settings page of the SSRS and the 3rd user is me with the roles of System Admin, System User.
Could anyone tell me the setting I am missing to grant me access to this?
Thanks
Take a look at the pre-defined security roles for SSRS 2014. The permission you need to work through report builder is the "Report Builder" role. You should probably also get the publisher role so you can manage deployments and such.
I am trying to get security on Reporting services set up. I have installed reporting services with all the defaults and I was able to create and publish a report. Using the link [http://server/reports] I was able to view that report. Bearing in mind that i am in the domain administrators group.
I then asked a non domain admin user to review the report but they got the message: • The permissions granted to user 'DOMAIN_ABC\username' are insufficient for performing this operation. (rsAccessDenied)
It then dawned on me that I would need to set up security by assigning the 'Browser' role to DOMAIN_ABC\Domain Users.
At that point I realized that I had no way of interfacing with the security side of things as none of the Home, My Subscriptions, Site Settings tabs were displaying (as is the case with a 2005 RS deployment we have). Thus began my search for how to get the 'admin' view into the environment to enable security and access. I have thus far been unsuccessful so far, I have tried running IE as the 'Administrator', added the server to my 'Trusted' sites list. Checked the RS config file, set the Service Account to 'Local Service' but still no joy. Does anyone know what I may try?
Thanks in Advance,
Jonathan
You can not view the admin settings unless u got that permission.
Only Report manager administrator can create roles and users from report manager url [http://localhost/Reports/] then go to site settings ----> security,----> new role assignment.
If the user in system Administration group then only he can view the site settings option in the home page, If the user is on other group like content manager /System user then he can not view the site settings option.
You need to first add the user in the System Administrator group.then he can view all these settings.
Hope this helps...
I just deployed a reporting service page at our server. But every time I access the page, it keeps asking me for username and password to the datasource (our database).
Since the report will be opened for public users, I have to keep the username and password confidential and couldn't share it with the public user.
I know there's a way to hide this. I'm thinking there's thing that I missed when configuring the setting for the deployment. Could you guys help me on this ?
You need to go to the properties of the datasource of the report and look at the credentials piece. There are several options there - from there you can set up credentials for the report to run as and your users will not see this. That should do it.