Solved

Report execution error:The permissions granted to user are insufficient for performing this operation.

Posted on 2015-02-16
18
63 Views
Last Modified: 2015-02-20
A client is reporting that they get this error ..... any reason why?

I HAVE tried adding permissions in report manager under site settings AND folder settings
0
Comment
Question by:vbnetcoder
  • 8
  • 6
  • 4
18 Comments
 
LVL 33

Expert Comment

by:Mike Eghtebas
ID: 40612910
Most likely, some of the tables queried is not in the chain of ownership. The user in question doesn't have to read from certain tables.
0
 

Author Comment

by:vbnetcoder
ID: 40612925
Really? every user that views my reports has to have permission to the tables?
0
 
LVL 33

Expert Comment

by:Mike Eghtebas
ID: 40612928
If you are not admin, ask them to look at the ownership chain. If a view is used for this purpose, then the view may include a table lacking proper ownership.
0
 

Author Comment

by:vbnetcoder
ID: 40612937
I am an admin so what should i be looking at?
0
 
LVL 33

Expert Comment

by:Mike Eghtebas
ID: 40613377
What the report based on?

SP, View, or table(s)?
0
 

Author Comment

by:vbnetcoder
ID: 40613999
I am using stored procedures to return the data from the tables
0
 
LVL 46

Expert Comment

by:Vitor Montalvão
ID: 40614032
every user that views my reports has to have permission to the tables?
Sure. You need to see the SSRS as any application or website. Who will work with that need to have access to the database objects.
0
 

Author Comment

by:vbnetcoder
ID: 40614058
can you give me a screen shot on how to do this? Do i have to do this for every sp and table or can i do it all at one somewhere?
0
 
LVL 46

Expert Comment

by:Vitor Montalvão
ID: 40614232
First of all, apart of the reports there is any other application that has access to the database?
0
3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

 

Author Comment

by:vbnetcoder
ID: 40614306
no, only the reports
0
 
LVL 46

Expert Comment

by:Vitor Montalvão
ID: 40614316
Ok. Since it's only reports they will only need read permissions so you need to create their login and grant them the respective read permission and for that you can use the db_datareader role:
EXEC sp_addlogin 'DOMAIN\UserName' --> assuming that are AD users
GO
USE DatabaseName
GO
EXEC sp_addrolemember 'db_datareader','DOMAIN\UserName'

Open in new window

0
 

Author Comment

by:vbnetcoder
ID: 40614492
i get this error  

'domain\username' is not a valid name because it contains invalid characters.
0
 
LVL 33

Expert Comment

by:Mike Eghtebas
ID: 40614503
In your sp, there must be a view or some tables queried. Make sure the users have right to reach the sachems the view or tables belong. It seems the ownership of some of those tables is not granted.

Mike
0
 

Author Comment

by:vbnetcoder
ID: 40614507
so i reverse the \ to / and get

'domain/username'  does not exists in the database
0
 
LVL 46

Expert Comment

by:Vitor Montalvão
ID: 40614523
'domain\username' is not a valid name because it contains invalid characters.
Please substitute DOMAIN with your domain name and USERNAME with a valid user name. They are only an example and you should replace with real values.
0
 

Author Comment

by:vbnetcoder
ID: 40614559
yeah that's what i did ....
0
 
LVL 46

Expert Comment

by:Vitor Montalvão
ID: 40614579
Let replace it with the CREATE LOGIN command:
CREATE LOGIN [<domainName>\<login_name>] FROM WINDOWS;

Open in new window

0
 
LVL 46

Accepted Solution

by:
Vitor Montalvão earned 500 total points
ID: 40614589
I've realized now that I forgot the CREATE USER  statement. So this should be the complete script:
CREATE LOGIN [<domainName>\<login_name>] FROM WINDOWS
GO
USE DatabaseName
GO
CREATE USER [<domainName>\<login_name>] FOR LOGIN [<domainName>\<login_name>] WITH DEFAULT_SCHEMA=[dbo]
GO
EXEC sp_addrolemember N'db_datareader', N'[<domainName>\<login_name>]'

Open in new window

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction: This article is aimed at report developers who are used to developing reports using relational databases and have gotten a first-time assignment to develop reports on OLAP cubes. It demonstrates how to build a report using SQL Ser…
Time Corrections for Reports Working with a report, we made some interesting discoveries about the time corrections/updates We are using the following Parameters: Starting Entered Date (Date) formatted as Data type: "Date/Time" Ending Entered …
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

29 Experts available now in Live!

Get 1:1 Help Now