September 22, 2005 at 9:59 am
I'm using the reportviewer in my web app and in my code I specify:
ReportViewer1.ServerUrl = "http://xxx.xxx.xxx.xxx/reportserver;"
ReportViewer1.ReportPath = "/MyReports/Report1"
where xxx.xxx.xxx.xxx is the public IP address of the webserver that runs reportserver.
In IIS, I had to enable anonymous logins to get this to work (otherwise the user is prompted for a username and password).
The problem is that if you enter that URL in any browser on the internet you get to all of the reports I have created and anyone could run them!!!
What do I need to do so only my program can get to those reports from the Internet???
Thank you.
September 22, 2005 at 10:16 pm
What security are you using for access to your web app? Are you using impersonation?
If you are using ASP.NET, then you might be able to grant the ASPNET or NETWORK SERVICE account of the machine that's hosting the web app access to your report server.
You might be able to pass the logon credentials along with the request to the report server, but we'd need to know more about the technology you've used to create the web app.
September 23, 2005 at 6:02 am
I would suggest reading up on kerberos and checking your server properties in active directory (assuming you are configured this way) for "Trust computer for delegation" option.
Viewing 3 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply