April 8, 2008 at 4:00 am
Hello,
I have set up SQL Server Reporting Services with MOSS 2007 and i can now look at reports through sharepoint internally. I have a problem when trying to view these same reports externally from the network. When viewing the reports i get the following error -
The request failed with HTTP status 401: Unauthorized ( The server requires authorization to fulfill the request. Access to the Web server is denied. Contact the server administrator. ).
Any ideas on what may be causing this error?
Thanks in advance.
April 9, 2008 at 7:00 am
When you say 'view externally from the network', what do you mean? Are you hitting the reporting services web server with http://(servername)/reports ?
I suspect it has something to do with MOSS authenticating the users, but your other application is not.
April 9, 2008 at 7:49 am
You need to let us know the machine topology you're using as well as the authentication scheme you're implementing (particularly in your "external" case). If you're talking about an internet deployment, there's some special steps you need to do. For example, Kerberous can be a little tricky the first time.
April 10, 2008 at 8:32 am
Hi, thanks for the replies.
When i say externally from the network i mean away from the network i.e. from home. If we allow "all users" in our web publishing rule in ISA the authentication problem goes away. I have looked at the ISA logs and an anonymous user can access the report server.
We have got a group called "allow remote access", which allows our users to access the network from an external source, if they dont belong to this group they cannot access the network from an external source. We dont want to allow all users as its a potential security risk.
How do we set it up so that this user group can access the report server from home without having to set anonymous access?
Thanks in advance.
April 16, 2008 at 3:32 pm
Has anybody else had a similar problem regarding a similar setup?
April 17, 2008 at 7:31 am
Again, devil in the details. Is this part of a well structured DMZ or part of a firewall senario into your general network? Is you ISA server part of your general domain (or at least the same domain as yor RS server?) Have you enabled Kerberos authentication?
April 22, 2008 at 6:05 am
Hi,
We have enabled kerberos authentication, and we know its not an authentication issue as when you remove the user group and change the firewall rule to allow all users they can then access the reports.
We only want to allow one group to access the reports, not all the users on our domain?
Thanks
Viewing 7 posts - 1 through 6 (of 6 total)
You must be logged in to reply to this topic. Login to reply