SQL 2005 Server Reporting Services with MOSS 2007

  • Hello,

    I have set up SQL Server Reporting Services with MOSS 2007 and i can now look at reports through sharepoint internally. I have a problem when trying to view these same reports externally from the network. When viewing the reports i get the following error -

    The request failed with HTTP status 401: Unauthorized ( The server requires authorization to fulfill the request. Access to the Web server is denied. Contact the server administrator. ).

    Any ideas on what may be causing this error?

    Thanks in advance.

  • When you say 'view externally from the network', what do you mean? Are you hitting the reporting services web server with http://(servername)/reports ?

    I suspect it has something to do with MOSS authenticating the users, but your other application is not.

  • You need to let us know the machine topology you're using as well as the authentication scheme you're implementing (particularly in your "external" case). If you're talking about an internet deployment, there's some special steps you need to do. For example, Kerberous can be a little tricky the first time.

  • Hi, thanks for the replies.

    When i say externally from the network i mean away from the network i.e. from home. If we allow "all users" in our web publishing rule in ISA the authentication problem goes away. I have looked at the ISA logs and an anonymous user can access the report server.

    We have got a group called "allow remote access", which allows our users to access the network from an external source, if they dont belong to this group they cannot access the network from an external source. We dont want to allow all users as its a potential security risk.

    How do we set it up so that this user group can access the report server from home without having to set anonymous access?

    Thanks in advance.

  • Has anybody else had a similar problem regarding a similar setup?

  • Again, devil in the details. Is this part of a well structured DMZ or part of a firewall senario into your general network? Is you ISA server part of your general domain (or at least the same domain as yor RS server?) Have you enabled Kerberos authentication?

  • Hi,

    We have enabled kerberos authentication, and we know its not an authentication issue as when you remove the user group and change the firewall rule to allow all users they can then access the reports.

    We only want to allow one group to access the reports, not all the users on our domain?

    Thanks

Viewing 7 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic. Login to reply