SSRS Security

I have been tasked with providing one role for all users to use to get into any report in SSRS..Some people access report manager and the folders within directly.. Some people use an ASP.NET wibe site that passes a user name and password to SSRS and some people use a VB.net app that passes a user name and password and send a report to a PDF output.. They was ONE single Role that I would set up in SQL Server 2008 called Report_Role.. I want to add people based on their active directory windows name( everyone is something like LEX/cemith01) to this role so no matter how they access SSRS the can get in without having to provide a user name and password... The reports data comes from the same server but different databases and some use stored procs etc.. What do you recommend and is this possible? Remember the goal is to have anyone that I assign to the 1 role be able to read or write to a SSRS report in any folder.. Just basically be able to get to report manager so they can go to the folder they want, print a report or enter data into a report.
LVL 1
cheryl9063Asked:
Who is Participating?
 
Alpesh PatelAssistant ConsultantCommented:
Go to site setting and create role and assign role to users.

Untitled.png
0
 
Marten RuneSQL Expert/Infrastructure ArchitectCommented:
Create a domain group, and put users in the ad group, then create a login for the server for this group, create a user for this login in the database, create the role, and asign it to the user, grant permissions to the role. Example:
USE master;
GO
CREATE LOGIN [MYDOMAIN\APPLICATION SUPPORT] FROM WINDOWS;
GO
USE mydb;
GO
CREATE USER [MYDOMAIN\APPLICATION SUPPORT] FROM LOGIN [MYDOMAIN\APPLICATION SUPPORT];
GO
CREATE ROLE rSupport;
GO
EXEC sp_addrolemember 'rSupport', 'MYDOMAIN\APPLICATION SUPPORT';
GO
GRANT SELECT, INSERT,UPDATE, etc ON Mytable TO rSupport;
GO

In your case mydb would be the reporting services db, and to let users create reports they need the rights to store them on disk where the web for reporting services reside, so let this domain group have apropriate ntfs permissions on the reports directories on the webserver also.

Should cover it I think

Regards Marten
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.