Controlling report-viewing permission

  • Article

Applies To: Forefront Client Security

All Client Security user roles require permission to view reports. Granting this permission allows users to view the Web-based reports provided by the Report Manager on the reporting server. Also, user roles requiring access to the Client Security console need permission to view reports because these permissions allow the console to retrieve the reporting data displayed on the dashboard.

When you assign users the Browser role provided with SQL Server Reporting Services, users can access the reports. For more information about predefined roles in SQL Server Reporting Services, see Predefined Roles Overview (https://go.microsoft.com/fwlink/?LinkID=78988).

To assign the Browser role to a user or group

  1. Log on with a user account that has Content Manager permissions in SQL Server Reporting Services and open the Report Manager in a Web browser. By default, the URL is:

    https://ReportingServerName/reports

    The Home page appears.

  2. Assign the user or group to the Browser role for the Home page. To do so, perform the following steps:

    1. Click the Properties tab, and then click the Security tab (at the side of the page).

    2. Click New Role Assignment. The New Role Assignment page appears.

    3. In the Group or user name box, type the name of the user or group to which you want to assign the Browser role. You can specify only one account name for each role assignment.

    4. Select the Browser check box, and then click OK.

    The Properties page shows the user or group you added. The user or group to which you assigned the Browser role can now access the Report Manager and navigate to Client Security reports.

To remove the Browser role from a user or group

  1. In a Web browser, open the Report Manager. By default, the URL is:

    https://ReportingServerName/reports

    The Home page appears.

  2. Remove the user or group from the Browser role for the Home page. To do so, perform the following steps:

    1. Click the Properties tab, and then click the Security tab (at the side of the page).

      A list of users and groups and their assigned roles appears.

    2. Select the check box to the left of the user or group from which you want to remove the Browser role, and then click OK.

    The Properties page shows the list of users and groups. The user or group you removed does not appear, indicating that the ability to view reports from the reporting server has been revoked.