Advice on SSRS 2005 internet access & security issues

  • We have been using SSRS 2005 for internal purposes for a couple of years. Access to reports is secured via Active Directory users and groups on the local domain.

    It would be useful to make selected reports available to third parties, and I am seeking advice on the possibility of making a Report Server available to third parties via the internet. In some cases these reports may contain customer name & address data, so we would need to ensure that it is properly protected. Obviously we'd look to use SSL, but I also wanted to know:

    - How secure is SSRS 2005 against injection or other forms of attack?

    - What measures are recommended for securing an SSRS 2005 installation if it is to be made available over the internet?

    - What is the most straightforward way of implementing logon credentials for external users?

    We don't have any third party authentication/authorisation software installed - only off-the-shelf Windows facilities.

    Can anyone offer any advice?

  • Hi,

    I think we can use the report user logins with ristricted privilages for the third users.

    Thanks,

    Veeren 🙂

    Thanks & Regards,
    Veeren.
    Ignore this if you feel i am Wrong. 😉

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply