May 25, 2010 at 1:53 pm
We have installed SQL SERVER 2008 R2 reporting Service on windows 2008.when the users are trying to connect to the URL(http://ServerName/Reports),they are getting this error message:
User 'DomainName\UserName' does not have required permissions. Verify that sufficient permissions have been granted and Windows User Account Control (UAC) restrictions have been addressed.
When I set the Domain users as administrator,there is not any problem.But I can not add all users to administrator group.
I also Added users to SQLServerReportServerUser$ServerName$MSRS10_50.MSSQLSERVER Service,but this did not help.
I would appreciate if someone help me on this issue.
July 20, 2010 at 2:41 pm
Seriously, somebody please respond.
I have the exact same issue.
Paresh Motiwala Manager of Data Team, Big Data Enthusiast, ex DBA
July 22, 2010 at 9:54 pm
Here’s one solution:
(although you could use local security groups for the SSRS security "roles" you need, I tend to use Domain security groups instead. Either way, add users as appropriate)
Create a Windows security group for "SSRS Report Viewers" (follow your own naming standard).
Connect to SSRS via your browser, using an account with sufficient privileges to manage SSRS security. It sounds like your account has Admin rights on the server, that should work (it will also need elevated privileges on SQL 2008, since the local Administrators group no longer gets [sysadmin] by default).
On the Home page, under "Site Settings" (top left corner), you can manage site-wide security settings. In my case, I host reports for multiple "groups", so I generally leave the "BUILTIN\Administrators" as "System Administrator" here, and first start "customizing" security under the "parent folder" for each "group". The following steps assume that you'll be using folder-specific security for each "top level report folder". Otherwise, you can do the same steps at the Home folder and set the report folders to "inherit".
HOME folder:
Change the view to "Show Details".
Click the "Edit" button for the Folder you want to work on.
Switch to the "Security" page from the left-side menu.
Click "Edit Item Security", and answer the popup.
Click "New Role Assignment", and enter the Windows security group for "SSRS Report Viewers" that you created in the first step.
Select the Role(s) for the members of the group. Everyday report "readers" should only have "Browser" rights, in most cases.
Click "OK".
Now, provided that you haven't customized other security settings, the Users in your "viewers" group can run your reports.
For all the details and then some, consult SQL 2008 BOL.
Or, for SSRS 2008 security documentation, look here: http://technet.microsoft.com/en-us/library/bb522728(SQL.100).aspx
November 19, 2010 at 8:43 am
Hi,
If you log into Report manager as an administrator, you will need to give permissions to that windows AD user/group by;
click on folder setting >
new role assignment >
enter details and apply .
Let me know how you get on!
Regards
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply