cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
pbx Member
Member

Re: Report Server Custom Authentication

@malikirfan28:

The proper documentation about custom security extensions can be found here:

https://docs.microsoft.com/en-us/sql/reporting-services/extensions/security-extension/how-to-install...

 

That means for PBIRS the machine key should be placed in \ReportServer\rsReportServer.config. However according to the following link, a bug in PBIRS, at least up to this version 1.1.6514.9163 (Build 14.0.600.434), exists that requires putting they keys in machine.config. Given that there's been two minor relases after that, could you please confrim if the bug still exists in the latest release, Version 1.1.6551.5155 (Build 14.0.600.438)?

 

https://github.com/Microsoft/Reporting-Services/issues/26

malikirfan28 Regular Visitor
Regular Visitor

Re: Report Server Custom Authentication

Dear @pbx, Ok I will check new version on fresh mahine and then update here.

However right now when a new registered user login successfully, PBIRS display error:

 

The Builten (Windows) Administrator acccount does not work with custom security so how can I login as Administrator and grant permission to custom user? If I revert back to Windows Authentication then builten Administrator work and I can change Site Setting, but at this time PBIRS does not found any custom user name. When I try to add custom user name in "Add User or Group" field it give error, "such user or group does not exist".

Any idea?

 

 

danielnord Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

For others trying to find the solution.

 

I had some problemswith 500 error too. I found out that there are a couple of steps you need to do after you have set the plugin. See my comment in this issue (danielnord): https://github.com/Microsoft/Reporting-Services/issues/49

annucsb Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

Thank you so much for this post.  Adding the machine key to the machine.config file worked. 

Highlighted
annucsb Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

This worked for me.

Here are the details:

edited C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\machine.config

Add machinekey under system.web

I used Visual Studio to edit machine.config. Must start VS as admin.

Restart computer, restart rs service

annucsb Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

I installed Power Bi Report Server - Evaluation, Product Version 15.0.2.378 and I still had to update the machine config to get it to work with the custom security example. 

sowmyaKrishna Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

did you get solution? Please let me know if you get solution

 

Thanks in advance

annucsb Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

Yes - this is my solution

 

Here are the details:

edited C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\machine.config

Add machinekey under system.web

I used Visual Studio to edit machine.config. Must start VS as admin.

Restart computer, restart rs service

sowmyaKrishna Frequent Visitor
Frequent Visitor

Re: Report Server Custom Authentication

Hi @danielnord

 

I followed all steps but still I am getting below error. Can you please give me the solution .

 

018-12-14 15:03:14.8087|INFO|1|CONFIG : rsConfigFilePath = [C:\Program Files\Microsoft Power BI Report Server\PBIRS\ReportServer\rsreportserver.config] (env)
2018-12-14 15:03:17.1056|INFO|1|CONFIG : AccessControlAllowOrigin = [] (env)
2018-12-14 15:03:17.1056|INFO|1|CONFIG : AccessControlAllowHeaders = [] (env)
2018-12-14 15:03:17.1056|INFO|1|CONFIG : AccessControlAllowMethods = [GET, PUT, POST, PATCH, DELETE] (env)
2018-12-14 15:03:17.1056|INFO|1|CONFIG : AccessControlExposeHeaders = [] (env)
2018-12-14 15:03:17.1056|INFO|1|CONFIG : AccessControlMaxAge = [600] (env)
2018-12-14 15:03:17.1368|INFO|1|CONFIG : SecureConnectionLevel = [0] (env)
2018-12-14 15:03:19.2618|INFO|1|CONFIG : MaxActiveReqForOneUser = [20] (env)
2018-12-14 15:03:19.2618|INFO|1|CONFIG : MaxActiveReqForAnonymous = [200] (default)
2018-12-14 15:04:41.5054|INFO|5|Received request GET | RequestID = s_69cc7afc-3bd5-4042-be76-7f14cd3a3c0a
2018-12-14 15:04:41.5992|ERROR|5| 10.120.243.36: GET - 0:00:00.0833391
Exception: System.Web.HttpException (0x80004005): Unable to validate data.
at System.Web.Configuration.MachineKeySection.EncryptOrDecryptData(Boolean fEncrypt, Byte[] buf, Byte[] modifier, Int32 start, Int32 length, Boolean useValidationSymAlgo, Boolean useLegacyMode, IVType ivType, Boolean signData)
at System.Web.Security.FormsAuthentication.Decrypt(String encryptedTicket)
at Microsoft.BIServer.Owin.Common.Middleware.CustomAuthenticationMiddleware.CreateRequestContextFromCookie(IOwinContext context)
at Microsoft.BIServer.Owin.Common.Middleware.CustomAuthenticationMiddleware.CreatePortalIdentity(IOwinContext context)
at Microsoft.BIServer.Owin.Common.Middleware.CustomAuthenticationMiddleware.Invoke(IOwinContext context)
at Microsoft.Owin.Security.Infrastructure.AuthenticationMiddleware`1.<Invoke>d__0.MoveNext()
--- End of stack trace from previous location where exception was thrown ---

 

Thanks in Advance...