I have spent hours troubleshooting this issue. There are numerous posts about 401.1 errors using SSRS in integrated mode with SharePoint however none of them address an intermittent issue like ours. Intermittently when running reports from our SharePoint reports centre we will receive an error: "The request failed with HTTP status 401: Unauthorizied" We can refresh the page anywhere from 1 to several times and then it might run. It seems to be worse when lots of reports are being run. The SharePoint and Reporting Services servers do not appear to undergo a performance decrease during times when we are receiving this error however. The setup is as follows: Server 1: SharePoint 2010 on Windows Server 2k8 Standard R2 (single WFE and app server) Server 2: SQL 2k8 R2 Reporting Services installed in integrated mode. SharePoint 2010 installed. Windows Server 2k8 Standard with SP2 Server 3: SQL 2k8 R2 (SharePoint databases). Using a SQL alias. We are using Kerberos and have SPNs set up for the SQL service account, the reporting services service account and the SharePoint application pool service account. No network load balancing. The following errors are reported on the SharePoint server: 03/08/2012 14:03:54.64 w3wp.exe (0x1600) 0x1990 SQL Server Reporting Services UI Pages aacy High Web part failed in OnPreRender: System.Net.WebException: The request failed with HTTP status 401: Unauthorized. at Microsoft.Reporting.WebForms.Internal.Soap.ReportingServices2005.Execution.RSExecutionConnection.GetSecureMethods() at Microsoft.Reporting.WebForms.Internal.Soap.ReportingServices2005.Execution.RSExecutionConnection.IsSecureMethod(String methodname) at Microsoft.Reporting.WebForms.Internal.Soap.ReportingServices2005.Execution.RSExecutionConnection.SetConnectionSSLForMethod(String methodname) at Microsoft.Reporting.WebForms.Internal.Soap.ReportingServices2005.Execution.RSExecutionConnection.ProxyMethodInvocation.Execute[TReturn](RSExecutionConnection connection, ProxyMethod`1 initialMethod, ProxyMethod`1 retryMethod) at Microsoft.Reporting.WebForms.ServerRep... 7201dbd9-db69-4426-94f2-2fd29ed83bfd 03/08/2012 14:03:54.64* w3wp.exe (0x1600) 0x1990 SQL Server Reporting Services UI Pages aacy High ...ort.EnsureExecutionSession() at Microsoft.Reporting.WebForms.ServerReport.GetParameters() at Microsoft.ReportingServices.SharePoint.UI.WebParts.ReportViewerWebPart.GetFilterValues(FilterParametersCollection& filterValues, ReportParameter[]& noLongerSpecifiedFilters) at Microsoft.ReportingServices.SharePoint.UI.WebParts.ReportViewerWebPart.HandleParameters() at Microsoft.ReportingServices.SharePoint.UI.WebParts.ReportViewerWebPart.OnPreRender(EventArgs e) 7201dbd9-db69-4426-94f2-2fd29ed83bfd Have also seen this error, but it does not seem to come up every time: Exception encountered for SOAP method GetSystemProperties: System.Net.WebException: The request failed with HTTP status 401: Unauthorized. at Microsoft.SqlServer.ReportingServices2010.RSConnection2010.SetConnectionProtocol() I have looked through the report server service trace log and it does not appear that the request ever reaches the reporting services server.

Hi kylierichardson, Please troubleshoot the issue by following steps: To change the Reporting Services Web service virtual directory to use Windows Authentication, follow these steps: On the Reporting Services machine, open IIS Manager.Locate the Web site that contains the ReportServer virtual directory.Right-click the virtual directory, and then click Properties.Click the Directory Security tab. Under Authentication and Access Control, click Edit.Make sure that only the Integrated Windows Authentication check box is selected. There are two ways to resolve this: Configure Reporting Services Integration to use Trusted Account instead of Windows Integrated. Follow these steps to change this setting: Open Central Administraton, and then click Application Management.Click Manage Integration Settings.Set Authentication mode to Trusted Account. Note: You will no longer be able to specify Windows Authentication for your report data sources, because we are not using Windows credentials. If this is done, you will receive the following error: "This data source is configured to use Windows integrated security. Windows integrated security is either disabled for this report server or your report server is using Trusted Account mode". You can still specify specific credentials for the data source that are Windows credentials. Configure Kerberos authentication, and then configure SharePoint to correctly use Kerberos authentication. (The overall configuration of Kerberos is documented in a large number of other resources and won't be specifically covered here. The following steps assume Kerberos has already been configured correctly. For more information about Kerberos and troubleshooting, see section 10.2,"Kerberos." After Kerberos is configured, change the authentication providers on the SharePoint sites in order to be able to successfully use Kerberos.Open Central Administration, and then click Application Management.Under Application Security, click Authentication Providers.Click the zone you want to modify.Under IIS Authentication Settings. click Negotiate instead of NTLM.Click Save.Repeat steps iv-vi for each zone/site you want to change by selecting a different Web application from the drop-down list in the upper right hand corner. Edit the DisableLoopbackCheck registry key using the steps in section 10.1, "How to Change the DisableLoopbackCheck Registry Key." To verify that integrated Windows authentication is enabled, follow these steps: In Internet Explorer, click Tools, and then click Internet Options.Click the Advanced tab.Under Settings, scroll down to Security.Make sure the Enable Integrated Windows Authentication check box is selected.Close and then restart Internet Explorer. More information about check Kerberos authentication, please see: http://blogs.msdn.com/b/martinkearn/archive/2007/04/23/configuring-kerberos-for-sharepoint-2007-part-1-base-configuration-for-sharepoint.aspx http://blogs.msdn.com/b/james_world/archive/2007/08/20/essential-guide-to-kerberos-in-sharepoint.aspx Lola Wang [MSFT] MSDN Community Support | Feedback to us Get or Request Code Sample from Microsoft Please remember to mark the replies as answers if they help.

To address each of your suggestions: "To change the Reporting Services Web service virtual directory to use Windows Authentication, follow these steps:" Both ASP.Net Impersonation and Windows Authentication are enabled. All other options are disabled. Do we need to disable ASP.Net Impersonation as well? Every SharePoint web application seems to have these settings by default "Configure Reporting Services Integration to use Trusted Account instead of Windows Integrated. Follow these steps to change this setting:" We have a requirement to use Kerberos authentication, so changing it to use Trusted Account is not an option for us. Note that Kerberos does work most of the time, but we intermittently get the 401 errors. "Configure Kerberos authentication, and then configure SharePoint to correctly use Kerberos authentication." Kerberos has been configured for SharePoint and there is absolutely no issue with users accessing SharePoint using Kerberos authentication. And again, reports work using Kerberos authentication most of the time. If there was something inherently wrong with the setup I would imagine that it would fail all of the time, not just intermittently. We followed the documentation on how to configure Kerberos and got it all working with no hassles, other than our intermittent report access issues we are now trying to resolve. The authentication provider on the SharePoint web application is set to negotiate. "Edit the DisableLoopbackCheck registry key using the steps in section 10.1, "How to Change the DisableLoopbackCheck Registry Key." The diableloopbackcheck registry is set on the SharePoint server (although this isn't best practice but was done as part of my troubleshooting - we will change it to use backconnectionhostnames instead). Disableloopbackcheck is not set on the reporting services server however - it was my understanding that this is not required because the report server is not using a host header (the report server URL set up is http://servername/ReportServer). Please correct me if I am wrong. "To verify that integrated Windows authentication is enabled, follow these steps:" Enable Integrated Windows Authentication is selected.

Kylie, i'm having a similar problem with intermittent errors. however, i typically can get the report to run by clicking the refresh icon in the SSRS toolbar. Have you had any sucess getting this resolved? TIA DeanDean MCTS-SQL 2005 Business Intelligence, SharePoint 2010, Configuration