dbTalk Databases Forums  

Problems with IIS, Proxy and Security

Go Back dbTalk Databases Forums Databases microsoft.public.sqlserver.dts Problems with IIS, Proxy and Security

microsoft.public.sqlserver.dts microsoft.public.sqlserver.dts


Discuss Problems with IIS, Proxy and Security in the microsoft.public.sqlserver.dts forum.



Reply
 
Thread Tools Display Modes
  #1  
Old   
Stephan Brunner
 
Posts: n/a

Default Problems with IIS, Proxy and Security - 02-19-2004 , 10:21 AM





Hell

My finding so far is that security problems/flaws are "Sql Server Reporting Services" first and main issue ... and documenation is poor
Hope to get some answers here

We have two trusted NT4 domains A and B and a Squid Proxy that does not currently support NTLM

The Reporting IIS Server (2003) is in domain A
Both possible authentication methods (Windows and Basic) are turned on
It can be accessed using the long name http://ReportServer.OurLocation.OurC...me.Net/Reports OR the short name http://ReportServer/Report
I have created a local group Report_Browser with users from both domains
This group has browse rights on all levels

Scenario one: The report client IE is in domain
I MUST set the IE Proxy exceptions to not use the proxy for http://ReportServer.... (I am sure I do not want to make these modifications on hundres of PCs!!
This way all report folders are shown and the reports are created as expected

If I remove the proxy exclusion then a logon dialog is popping up asking for UID, PWD and DOMAIN.
But the correct credentials are NOT accepted. After three attempts I always get an error message 401.

What am I missing

Scenario two: The report client IE is in domain B (other subnet
Here I must use the proxy because without it there is no go. This means that I will end up using Basic authentication and will always get the dialog asking for DOMAIN\UID and PWD until I check the save password checkbox
When I use the short form it is autmatically substituted by the long form
I can navigate down to all reports but when a report should be created the green turning circle (Report is being generated) appears and stays there forever. The report is NOT generated and there is NO timeout or other error message

Any idea what is going wrong here

Other question
We have structured the reports like this

Home - Marketing - Application
Home - Marketing - Application
Home - Marketing - ...
Home - Sales ...
Home -....

Is there a way to assign a group 'NewGroup' to Home so that the members of this group could navigate down to ALL reports? Sometimes this seems to work, sometimes not. Is there a time issue
I do not want to assign the group to each and every folder and report

Also if I want a new group "NewGroup_2" to have access to only 'Home - Marketing - Application2 - Report1.rdl' do I need to assign the group to each of the four levels? Seems to be so because the users in this group must be able do navigate down from level 1 to level 4

Stephan Brunner

Reply With Quote
  #2  
Old   
Stephan Brunner
 
Posts: n/a

Default RE: Problems with IIS, Proxy and Security - 02-20-2004 , 03:01 AM





Oop

Sorry, wrong forum

Reply With Quote
Reply

« Previous Thread | Next Thread »



Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off



Powered by vBulletin Version 3.5.3
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.


Contact Us - dbTalk Databases Forums - Archive - Top