Problem Getting Some Users To Be Able To Run Reports (probably Security Of Some Sort)
Jan 12, 2007
I am able to deploy and run reports from my screen at work, but some non-developers cannot run them. They can see the reports, but get the following error message when they click on the report:
An error has occurred during report processing. (rsProcessingAborted)
Cannot create a connection to data source 'DataSource1'. (rsErrorOpeningConnection)
For more information about this error navigate to the report server on the local server machine, or enable remote errors
--------------------------
-----
- I assume the preceding error has something to do with credentials. I am using Windows security authentication for this. One user has worked through this and is now getting cannot run report query (one of the report queries in the report). Help would be appreciated.
I am trying to revert back to Windows 7 after upgrading to Windows 10, however it will not let me and the following message occurs: "Remove new accounts.Before you can go back to a previous version of Windows, you'll need to remove any user accounts you added after the most recent upgrade. The accounts need to be completely removed, including their profiles.You created one account (NT SERVICEMSSQLSERVER) Go to Settings> Accounts> Other users to remove these accounts and then try again".However I did not create any new users and there are no other users listed in the Accounts section.
Is there a way to copy reports from other users "My reports" folder? I am logging onto the management studio reporting services using an administrative account and I am able to view the reports from all users' "My Reports" folder. But I am not able to export them as an rdl file. I am able to export reports from other common folders, but not from the "My Reports" folder.
The reason I need to do this is some of the users have created some reports in one environment and the reports are available in their respective "My Reports" folder. I need to move these reports to their corresponding "My Reports" folder in another environment.
I am facing some problem while grouping the fields.. I try to form one report where I get group by States then by city and then total count of states like
State: A city:1 No of ppls: no of houses: city:2 No of ppls: no of houses: city:3 No of ppls: no of houses: Total No of ppls in State A: State: B city:4 No of ppls: no of houses: city:5 No of ppls: no of houses: city:6 No of ppls: no of houses: Total No of ppls in State B:
Interactive sorting works just fine on my report until I set the execution property to render from snapshot. When viewing a snapshot, clicking on the column sort arrows will not sort the data I'm viewing. If I turn the snapshot feature off, then I get the interactive sort functionality back.
Is this by design or am I missing something fundamental here?
I have a drill down report and would like to add interactive sort on two columns:- column 1 & column 2. These two columns should be in descending order. By adding this, when user's click on column 1 they will see the data based on the sorted order. Does anyone help me on this issue.
I would like a report to display the number of users and the reports accessed for a certain duration of time[being able to go back and check for previous years as well].
I read on the msdn that 60 days worth of report log is kept,and the rest gets wipped off.Any suggestions on how I would be able to get user access list for the past year as well.
I am trying to create some reports in VS.NET for our Microsoft CRM3.0.
I am using a SQL query like this:
SELECT CRMAF_Account.Name, CRMAF_Account.primarycontactidName, CRMAF_Account.address1_line1, CRMAF_Account.address1_line2, CRMAF_Account.address1_city, ActivityPointer.scheduledstart, ActivityPointer.subject, ActivityPointer.description FROM ActivityPointer, FilteredAccount CRMAF_Account INNER JOIN FilteredSystemUser FSU ON CRMAF_Account.ownerid = FSU.systemuserid WHERE ActivityPointer.regardingobjectid = CRMAF_Account.accountID AND FSU.Domainname = SYSTEM_USER ORDER BY Datum DESC
When I run this query, I get the desired result (I am the database dbo), but when any user tries doing the same, they get an error
An error has occurred during report processing. (rsProcessingAborted) Get Online Help
Query execution failed for data set '[DatabaseName]'. (rsErrorExecutingCommand) Get Online Help
SELECT permission denied on object 'ActivityPointer', database '[DatabaseName]', owner 'dbo'.
I desperately need to know which user rights are missing and where are they missing - I do not suppose that the rights are expected to be assigned directly to the database tables
Any quick help would be highly appreciated. I would also appreciate any articles with examples how to use parameters, filters and subreports.
Originally posted this in the performance point forum, the error actually occurs if link direct to the reporting web site as well. The reports are being created in the report builder, from the web service.
-----
Attempting to add a report services report into a performance point dashboard page. Everything is installed on one box.
When the admin logins load the page, everything works great.
When a non-admin loads the page, everything except the report generates, and the following error kicks off:
An error has occurred during report processing. (rsProcessingAborted)
Cannot create a connection to data source 'dataSource1'. (rsErrorOpeningConnection) Login failed for user '####' The user login in question has been given browse access to everything in the report services web. I'm not sure where or how to grant whatever access is necessary for this to work properly.. and really I was hoping that any authenticated user at the dashboard level would be able to view the report so I didn't have to do security twice.
I have to give three users read access to a database. My manager told me to map them to a User called "zxDatabase.Read.ug". I scripted the User and got this...
I don't see a Login at the server level named zxDatabase.Read.ug, so this is confusing. Where is this login in SSMS?
How do I map my three users to user zxDatabase.Read.ug. Or am I not understanding correctly? Do I just add there windows login to the database as Users and configure them the same as zxDatabase.Read.ug
Hey guys, I need a little help for my group project(Using ASP.NET 2 connected to SQL Server 2005). Here's the scenario:
Our system is basically a sort of login/logout system, so we have a table that has (Name, Date, Subject, TimeIn, TimeOut).
1. User registers on website, so information like e-mail is recorded into the database (and the user in the website is "linked/checked" to his data in the SQL Server for verification). 2. Users can choose to subscribe to a weekly report e-mail(maybe using a simple "IsSubscribed" boolean value in the database). 3. Every week, our system scans the database for those users who subscribed, then send different e-mail reports depending on the particular user (a compiled weekly report for Mon-Fri).
Is there such a feature in Database Mail? If not, how do I execute these types queries and just set them as a Scheduled Task?
We have a small .NET intranet site and I have some experience with Reporting Services. What I am looking to do is develop some reports on our website. However, I would like to make it so the user can do some customization of their reports.
For example, there would be sections of reports (Headcounts, Turnover, etc.) and in each section there would be measurements they could click to include. So I could select the Headcounts section and select the measurements such as Terminations, Hires, and Period End Headcount. I may not select the Turnover sections at all. I am almost thinking like a Google page where you can move around the sections and have your own customized report. Maybe these sections could work as Web Parts, or something like that.
Does any of this make sense? Is it possible? Are there are websites or examples that are out there that I could get an idea to see if this has been done and how to do it?
I created reports and deployed successfully. but one problem i am facing is when i am opening the browser to see reports, it is asking for credentials..
But i want to show these reports for anonymous users
Is there any way to show reports for anonymous users? If yes, what is the process. please refer me any articles.
I have developed a site on my local machine utilizing the built-in security/roles provides by ASP.NET 2.0. I am trying to publish the web application to a production server. It will publish correctly, however the ASPNETDB is not recognized. The folder app_data is created with the proper database files. My question is how do I set this up to use the data I have created in this database? I've searched on how to accomplish this but haven't found any definitive answers. I have found ScottGu's blog to be useful, but I was wondering if there is a different way. 1 - Do I push the data to a SQL Server install via SQL scripts? 2 - Can I link to the ASPNETDB that is created locally on my machine? 3 - If I make changes to the application and re-publish, is there a way to keep from overwriting the ASPNETDB on the server? I am a unsure of how the built-in roles/security works when you are ready to push something to production. If someone wouldn't mind pointing me in the right direction, it would greatly be appreciated. Any literature, advice, links, etc.. would be great.
I have a linked server set up and working correctly. I can create a query to get all the users from active directory with something like this:
SELECT [name], [samaccountname] from OpenQuery( ADSI, 'SELECT name, samaccountname FROM ''LDAP://DC=domain,DC=com'' WHERE objectClass = ''user'' and objectCategory=''Person''')
Now I am trying to select all the users in a specifed security group, but I am not having much luck. What is the best way to get this?
Is there any way in which I could distinguish a group of Database users from the other users. Say for e.g. store the Database users hierarchically, etc. Adding a Prefix/Suffix to the user name as a distinguish-er will not work in my case. I want to restrict the deletion of these Database users. Even the login with sysadmin or serveradmin rights should not be able to DROP those Database users.
Hi, The Report Manager portal has many folders. For each folder there are specific users with different roles. I am trying to figure out the way to extract User, folder wise security data. I want to run a query and retrieve users name, the folders they have access to and the user role corresponding to that folder.
Use ReportServer
SELECT u.UserName, r.RoleName FROM users u, policyuserrole pur, roles r
WHERE pur.UserID=u.UserID AND pur.RoleID=r.RoleID The above query fetches all the users and their roles. The folder information corresponds to Path column of Catalog table. Am unable link this table with the above query. TIA
Is SQL Server sensitive to Domain group name? Like "Domain Admin"?
I have user that belong to "myDomainDomain Admin" group. Group is in SQL as sysadmin but user cannot login using domain credentials. When I move that user to a different domain group which that group is in SQL again as sysadmin my user is able to login.
Ideally, I'd like to have the reports use windows authentication, ie grab current user/password so long as user does not have to enter it manually. If that is not possible, then how do I make it so user does not have to enter this info manually? My theory is that I have IIS set up incorrectly for doing this, but I'm not familiar enough with either reporting services or IIS to find out.
Situation: If possible, create one stored procedure for Crystal Reports(CR). For any CR users ou there, looking for coding suggestion also. Thank you for your assistance.
Currently, CR has a header(Report Header) coming from 1 to 1 tables, there is a parameter which is passed in, allowing it to retrieve one record for the header(report header or RH).
The CR then has 4 subreports in which each has its own stored procedure. This I believe happens because the Report Header records relationship to the subreport is 1 to many. The 3 remaining subreports relationship to the Report Header is also a 1 to many. The main problem is the subreports is that there may or may not have any records based on this, the subreport is suppressed within CR and thus there can be alot of unused white space on the 1st page and one of the subreports prints on a 2nd page when it could have been on the 1st page.
Example:
Main Stored Procedure(sp) RH Tables: aaa, bbb, ccc, ddd are 1 to 1 record tables and have a @xyz parameter.
Results of subreports and their associated procedure are varchar(8000) decriptions. Each line should be counted in some manner in the stored procedure(sp) and then should be counted in CR to avoid excess white space. To complicate matters subreport 2 to has font, bold, showbox but can have different font sizes. These variations could cause different line space requirements. Any ideas?
Each line should be counted in some manner in the stored procedure and then should be counted in CR. There is a count of records for each the main stored procedure.
RH has 1 record to many records in subreport 1 with same @xyz parameter. RH has 1 record to many records in subreport 2 with same @xyz parameter. RH has 1 record to many records in subreport 3 with same @xyz parameter. RH has 1 record to many reords in subreport 4 with same @xyz parameter.
Because of the relationships, its seems impossible to create one stored procedure which give in one select statement with all the 1 to 1, 1 to many relationsips, as stated above. I thought concatinating i.e. 3 records together and then parsing it out some how in CR, along with utilizing the i.e. 3 record count to help count lines. Thought of some how creating a temporary table matrix for 8pt - 28pt for line and spacing considerations.
My developers would like a 'sandbox' database with full ddl and dml permissions, however, they do not want others to read/change/drop their objects. With SQL 2005, can DDL permissions be granted to a user at the schema level? I'd rather not set up a database for each developer.
we have an application which lets users connect to production database with windows credentials, They are able access the sql tables too with windows login. I want to restrict them from accessing the sql tables. How do I do that.?I tried a db_deny but that prevented them from accessing the application too.
We are using SQL 2005 / Windows Server 2003 / Sharepoint portal.
Our reports are used through Sharepoint. I have added a web part which displays the folders. There are several reports within each of the folders. Users that have access to the Sharepoint site have access to all of the reports that are available in all of the folders. I would like to control folder access through SSRS.
I have a client who would like to access his database via SQL Server Management Studio. I created a login for him. This login has access only to his database on the server (I set this up using the user mapping), the Securables has Connect to SQL checked (otherwise he won't see his database). When I test this login, he is able to see all the other databases on the server, though when he clicks on the ones he doesn't have access to, it will tell him that he can't access that database. He can access his database alright. My question is, can I hide all the other databases from him, and only display that only database he has access to? I have tried many different ways, I can't seem to be able to do so.
Suposse that some models are deployed in Report Server for a while, and users have developed some ad-hoc reports on them using Report Builder, (some of the models are SSAS Cubes).
Modifications are required for a Model, what is the procedure to deploy this modifications? What happens with ad-hoc reports of this Model? Rewrite all the reports is a VERY BAD option, I agree that some reports must be rewrote, but only if they reference objects no longer valids in new model.
I suposse that the procedure for SSAS Cube Models will be different for a Relational Database Source because metods of generating models are so different. (I am particularly curious about Cubes, I can't figure out how I can do it)