I have a project requirement to allow 3rd party vendors direct access to our SSRS service so they can self serve their own reports.
We are working on the security model requirements and trying to mitigate the following.
Under no circumstances do we want a report developer to accidentally create a report using the wrong data source and potentially give the vendor access to data they are prohibited from seeing.
I am looking for a way to have our shared datasources which use credentials stored on the server have additional security added to them so a user who is not allowed access to said datasource won't be able to connect.
Folder A has a shared data source (datasource A). Folder A has permissionss where only certain users who are not vendors can access data source A. If a report is created using this shared datasource and deployed to folder B, there's a chance the vendor could access unauthorized data as datasource A will authenticate just fine in error when they connect to their report in Folder B.
Can the use of data extensions mitigate this risk? Eg. Only users allowed to access datasource A will get access to it even if the report is accidentally created and deployed to the wrong folder.
Thank you for your help in advance