Report Server Security

I have been playing around with the security on my SQL Reporting Server and
want to make sure I have reset it correctly.
Under my default website I have \Reports (http://server/reports). When I
Right Click the virtual and go into the Properties/Directory Security
Tab/Edit button on the Authentication and Access control what should I have
checked for "Enable Anonomous" checkbox and and "Integrated Security"
checkbox? Same goes for default website\ReportServer. What would happen
if only Anonomous is checked?
When I have only Integrated checked on \ReportServer I get just a plain page
giving me the Reporting server name and a MSRS version of 9.00.3042.00 But
nothing else. Does this virtual directory do nothing and only used by the
configuration manager?
Thanks
-Richard KFirst, a suggestion, do not ever go outside of RS and set security on the
websites. Set security from within RS and let it do what it needs to. I have
never touched the websites from IIS.
Second, if you set anonymous then you lose all admin rights (because you are
anonymous, RS does not know you are an admin).
RS consists of two applications. ReportServer is the site for Reporting
Services. Reports is the portal that ships with RS. Some people use it some
don't. With ReportServer website all you see are directories (which if you
have not deployed anything yet you would not have any directories listed).
Report Manager (what the portal is called) uses webservices with
ReportServer for all it does.
Go to http://yourseverhere/Reports/Pages/Folder.aspx
for Report Manager website. If you do not have anonymous set and you are an
admin on the server box then you will automatically be admin in RS.
Bruce Loehle-Conger
MVP SQL Server Reporting Services
"Richard K" <Rkokoski@.gmail.com> wrote in message
news:uZNFcggYIHA.3964@.TK2MSFTNGP03.phx.gbl...
>I have been playing around with the security on my SQL Reporting Server and
>want to make sure I have reset it correctly.
> Under my default website I have \Reports (http://server/reports). When I
> Right Click the virtual and go into the Properties/Directory Security
> Tab/Edit button on the Authentication and Access control what should I
> have checked for "Enable Anonomous" checkbox and and "Integrated Security"
> checkbox? Same goes for default website\ReportServer. What would happen
> if only Anonomous is checked?
> When I have only Integrated checked on \ReportServer I get just a plain
> page giving me the Reporting server name and a MSRS version of
> 9.00.3042.00 But nothing else. Does this virtual directory do nothing
> and only used by the configuration manager?
> Thanks
> -Richard K
>|||Thanks for the reply and confirmation of what I have been seeing.
Somestimes curiousity "killed the cat" with looking at the IIS side of the
world. I'm very good with SQL but a newbie to Report Services so just
trying to learn.
-Richard K
"Bruce L-C [MVP]" <bruce_lcNOSPAM@.hotmail.com> wrote in message
news:OMnCCdoYIHA.1132@.TK2MSFTNGP06.phx.gbl...
> First, a suggestion, do not ever go outside of RS and set security on the
> websites. Set security from within RS and let it do what it needs to. I
> have never touched the websites from IIS.
> Second, if you set anonymous then you lose all admin rights (because you
> are anonymous, RS does not know you are an admin).
> RS consists of two applications. ReportServer is the site for Reporting
> Services. Reports is the portal that ships with RS. Some people use it
> some don't. With ReportServer website all you see are directories (which
> if you have not deployed anything yet you would not have any directories
> listed). Report Manager (what the portal is called) uses webservices with
> ReportServer for all it does.
> Go to http://yourseverhere/Reports/Pages/Folder.aspx
> for Report Manager website. If you do not have anonymous set and you are
> an admin on the server box then you will automatically be admin in RS.
>
> --
> Bruce Loehle-Conger
> MVP SQL Server Reporting Services
> "Richard K" <Rkokoski@.gmail.com> wrote in message
> news:uZNFcggYIHA.3964@.TK2MSFTNGP03.phx.gbl...
>>I have been playing around with the security on my SQL Reporting Server
>>and want to make sure I have reset it correctly.
>> Under my default website I have \Reports (http://server/reports). When I
>> Right Click the virtual and go into the Properties/Directory Security
>> Tab/Edit button on the Authentication and Access control what should I
>> have checked for "Enable Anonomous" checkbox and and "Integrated
>> Security" checkbox? Same goes for default website\ReportServer. What
>> would happen if only Anonomous is checked?
>> When I have only Integrated checked on \ReportServer I get just a plain
>> page giving me the Reporting server name and a MSRS version of
>> 9.00.3042.00 But nothing else. Does this virtual directory do nothing
>> and only used by the configuration manager?
>> Thanks
>> -Richard K
>>
>