August 3, 2017 at 5:03 pm
We have been using this query to pull out logins folder permissions in SSRS:
SELECT C.UserName ,
D.RoleName ,
D.Description ,
E.Path ,
E.Name
FROM dbo.PolicyUserRole A
INNER JOIN dbo.Policies B ON A.PolicyID = B.PolicyID
INNER JOIN dbo.Users C ON A.UserID = C.UserID
INNER JOIN dbo.Roles D ON A.RoleID = D.RoleID
INNER JOIN dbo.Catalog E ON A.PolicyID = E.PolicyID
ORDER BY C.UserName;
However it appears to include users that have been removed from the report server and some that are even deleted from AD?
How do we produce a report of the logins that currently have access to reports\folders and what permissions\roles they have?
August 8, 2017 at 8:01 am
The users aren't linked to AD so if you delete an account in AD, it won't be deleted from the Users table.
As the tables are not documented and querying is not supported, there isn't a whole lot of information on it's usage. But it does seem to be used for things other than just current, active user accounts for report permissions - e.g. created by, modified by columns in other tables. So the issue you are seeing is known to happen when querying the tables for permissions. You may want to try this powershell script and see if it gets you closer to what you are looking for - and the missing r in Powershell is the name of the article:
List SSRS items Permissions using PoweShell
Sue
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply