Minimum set of permissions and user rights to execute a report definition
To use Reporting Services as a rendering engineI want to configure a local user on the server that has only the minimum set of permissions and user rights. The server is W2K3 SP2 and SQL 9.0.3200. In particular, this localuser has been removed from the local "Users" group and so is the "Authenticated Users" built-in group. In Reporting Services, it is mapped to a role that only has the "Execute Report Definitions" task permission. Then, following the details in http://support.microsoft.com/kb/812614/(Default permissions and user rights for IIS 6.0) I added all file security and local user rights required for "Users" and alsogranted and propagated "Read&Execute" on the "Reporting Services" folder and verified this using "Effective Permissions" on the ReportService2005.asmx file. However, I still get 401 Unauthorized,also after a complete restart of all related machines and services. Once I add the user or "Authenticated Users"back to "Users" everything works fine. What permissions might I be missing? Where could I find those permission requirements documented? I tried analyzing the 401 using auditing file and object access security but to no avail. There are no Failure audit entries in the Security log. How can I investigate the minimum permission set? What is the risk of leaving the user in the "Users" local group? Any help appreciated.
January 28th, 2008 2:44pm

I am also wondering for the answer of same. any help appreciated.
Free Windows Admin Tool Kit Click here and download it now
November 25th, 2010 12:57am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics