|
|
You're in the
sql server reporting services
group:Troubleshooting "ANONYMOUS LOGON" Failure
sql server reporting services:
I have what I think is an issue with Reporting Services. We have installed
SQL Server 2005 Reporting Services on a Windows 2003 Server. Both SQL Server and Windows 2003 have been upgraded to SP1. My SQL Server is set to report failed login attempts. My EventViewer is constantly reporting the following error: Event Type: Failure Audit Event Source: MSSQLSERVER Event Category: (4) Event ID: 18456 Date: 07/28/2006 Time: 09:42:52 User: NT AUTHORITY\ANONYMOUS LOGON Computer: YKCLNSC Description: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. [CLIENT: 10.7.54.59] For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: 0000: 18 48 00 00 0e 00 00 00 .H...... 0008: 08 00 00 00 59 00 4b 00 ....Y.K. 0010: 43 00 4c 00 4e 00 53 00 C.L.N.S. 0018: 43 00 00 00 07 00 00 00 C....... 0020: 6d 00 61 00 73 00 74 00 m.a.s.t. 0028: 65 00 72 00 00 00 e.r... IIS is also installed on this server, and anonymous access has been disabled. Here are the steps I have tried to resolve this error: 1) Grant the following accounts access to the instance of SQL Server: "NT AUTHORITY\ANONYMOUS LOGON", "NT AUTHORITY\NETWORK SERVICE", "NT AUTHORITY\SYSTEM", "YKCLNSC\IUSR_YKCLNSC", "YKCLNSC\IWAM_YKCLNSC" 2) Grant these same accounts membership in the "public" role in the master database 3) Grant these accounts membership in the "db_datareader" role in the master database 4) Grant these accounts membership in the "db_datareader" and "db_datawriter" roles in the master database 4) Grant these accounts membership in the "db_datareader", "db_datawriter" and "RSExecRole" roles in the master database 5) Grant these accounts membership in the "db_owner" role in the master database. None of these steps has stopped this error from occurring. Can anyone out
Go to your folder in IIS, right-click and select properties
In Directory security, click "Edit" for anonymous access and security There, check the anonymous login checkbox and give your windows user name and password. Hope this works .... [quoted text, click to view] Ken Powers wrote:
> I have what I think is an issue with Reporting Services. We have installed > SQL Server 2005 Reporting Services on a Windows 2003 Server. Both SQL Server > and Windows 2003 have been upgraded to SP1. > > My SQL Server is set to report failed login attempts. My EventViewer is > constantly reporting the following error: > > Event Type: Failure Audit > Event Source: MSSQLSERVER > Event Category: (4) > Event ID: 18456 > Date: 07/28/2006 > Time: 09:42:52 > User: NT AUTHORITY\ANONYMOUS LOGON > Computer: YKCLNSC > Description: > Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. [CLIENT: 10.7.54.59] > > For more information, see Help and Support Center at > http://go.microsoft.com/fwlink/events.asp. > Data: > 0000: 18 48 00 00 0e 00 00 00 .H...... > 0008: 08 00 00 00 59 00 4b 00 ....Y.K. > 0010: 43 00 4c 00 4e 00 53 00 C.L.N.S. > 0018: 43 00 00 00 07 00 00 00 C....... > 0020: 6d 00 61 00 73 00 74 00 m.a.s.t. > 0028: 65 00 72 00 00 00 e.r... > > > IIS is also installed on this server, and anonymous access has been disabled. > > Here are the steps I have tried to resolve this error: > > 1) Grant the following accounts access to the instance of SQL Server: > > "NT AUTHORITY\ANONYMOUS LOGON", "NT AUTHORITY\NETWORK SERVICE", "NT > AUTHORITY\SYSTEM", "YKCLNSC\IUSR_YKCLNSC", "YKCLNSC\IWAM_YKCLNSC" > > 2) Grant these same accounts membership in the "public" role in the master > database > > 3) Grant these accounts membership in the "db_datareader" role in the master > database > > 4) Grant these accounts membership in the "db_datareader" and > "db_datawriter" roles in the master database > > 4) Grant these accounts membership in the "db_datareader", "db_datawriter" > and "RSExecRole" roles in the master database > > 5) Grant these accounts membership in the "db_owner" role in the master > database. > > None of these steps has stopped this error from occurring. Can anyone out > there give me additional suggestions?
I followed your steps and ran "iisreset", but I'm still getting the error.
However, during this process I discovered that there were some discrepancies in the authentication mode of IIS. When I looked at "Directory Security" for "Web Sites", I discovered that anonymous access had been enabled. When I looked at this same folder for "Default Web Site", anonymous access was disabled. When I looked at Directory Security for "Administration", anonymous access was disabled, while "Integrated Windows authentication" and "Basic authentication" were enabled. [quoted text, click to view] "Sara" wrote:
> Go to your folder in IIS, right-click and select properties > In Directory security, click "Edit" for anonymous access and security > > There, check the anonymous login checkbox and give your windows user > name and password. > > Hope this works .... > > Ken Powers wrote: > > I have what I think is an issue with Reporting Services. We have installed > > SQL Server 2005 Reporting Services on a Windows 2003 Server. Both SQL Server > > and Windows 2003 have been upgraded to SP1. > > > > My SQL Server is set to report failed login attempts. My EventViewer is > > constantly reporting the following error: > > > > Event Type: Failure Audit > > Event Source: MSSQLSERVER > > Event Category: (4) > > Event ID: 18456 > > Date: 07/28/2006 > > Time: 09:42:52 > > User: NT AUTHORITY\ANONYMOUS LOGON > > Computer: YKCLNSC > > Description: > > Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. [CLIENT: 10.7.54.59] > > > > For more information, see Help and Support Center at > > http://go.microsoft.com/fwlink/events.asp. > > Data: > > 0000: 18 48 00 00 0e 00 00 00 .H...... > > 0008: 08 00 00 00 59 00 4b 00 ....Y.K. > > 0010: 43 00 4c 00 4e 00 53 00 C.L.N.S. > > 0018: 43 00 00 00 07 00 00 00 C....... > > 0020: 6d 00 61 00 73 00 74 00 m.a.s.t. > > 0028: 65 00 72 00 00 00 e.r... > > > > > > IIS is also installed on this server, and anonymous access has been disabled. > > > > Here are the steps I have tried to resolve this error: > > > > 1) Grant the following accounts access to the instance of SQL Server: > > > > "NT AUTHORITY\ANONYMOUS LOGON", "NT AUTHORITY\NETWORK SERVICE", "NT > > AUTHORITY\SYSTEM", "YKCLNSC\IUSR_YKCLNSC", "YKCLNSC\IWAM_YKCLNSC" > > > > 2) Grant these same accounts membership in the "public" role in the master > > database > > > > 3) Grant these accounts membership in the "db_datareader" role in the master > > database > > > > 4) Grant these accounts membership in the "db_datareader" and > > "db_datawriter" roles in the master database > > > > 4) Grant these accounts membership in the "db_datareader", "db_datawriter" > > and "RSExecRole" roles in the master database > > > > 5) Grant these accounts membership in the "db_owner" role in the master > > database. > > > > None of these steps has stopped this error from occurring. Can anyone out > > there give me additional suggestions? >
Trying to get RS to work anonymously is a problem. The reason is that you
will lose administration rights with Report Manager, because even though you might be an adminstrator it won't know that because you have set the website to be anonymous. Most domains have a group for all the users in the domain (in our domain it is called .... Users). I add that domain to a local group on the server and then add that into the appropriate role in Report Manager (RS uses roll based security). -- Bruce Loehle-Conger MVP SQL Server Reporting Services [quoted text, click to view] "Ken Powers" <KenPowers@discussions.microsoft.com> wrote in message news:C5AD756A-F4C6-4252-8CCB-48DCF0C04108@microsoft.com... >I have what I think is an issue with Reporting Services. We have installed > SQL Server 2005 Reporting Services on a Windows 2003 Server. Both SQL > Server > and Windows 2003 have been upgraded to SP1. > > My SQL Server is set to report failed login attempts. My EventViewer is > constantly reporting the following error: > > Event Type: Failure Audit > Event Source: MSSQLSERVER > Event Category: (4) > Event ID: 18456 > Date: 07/28/2006 > Time: 09:42:52 > User: NT AUTHORITY\ANONYMOUS LOGON > Computer: YKCLNSC > Description: > Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. [CLIENT: 10.7.54.59] > > For more information, see Help and Support Center at > http://go.microsoft.com/fwlink/events.asp. > Data: > 0000: 18 48 00 00 0e 00 00 00 .H...... > 0008: 08 00 00 00 59 00 4b 00 ....Y.K. > 0010: 43 00 4c 00 4e 00 53 00 C.L.N.S. > 0018: 43 00 00 00 07 00 00 00 C....... > 0020: 6d 00 61 00 73 00 74 00 m.a.s.t. > 0028: 65 00 72 00 00 00 e.r... > > > IIS is also installed on this server, and anonymous access has been > disabled. > > Here are the steps I have tried to resolve this error: > > 1) Grant the following accounts access to the instance of SQL Server: > > "NT AUTHORITY\ANONYMOUS LOGON", "NT AUTHORITY\NETWORK SERVICE", "NT > AUTHORITY\SYSTEM", "YKCLNSC\IUSR_YKCLNSC", "YKCLNSC\IWAM_YKCLNSC" > > 2) Grant these same accounts membership in the "public" role in the master > database > > 3) Grant these accounts membership in the "db_datareader" role in the > master > database > > 4) Grant these accounts membership in the "db_datareader" and > "db_datawriter" roles in the master database > > 4) Grant these accounts membership in the "db_datareader", "db_datawriter" > and "RSExecRole" roles in the master database > > 5) Grant these accounts membership in the "db_owner" role in the master > database. > > None of these steps has stopped this error from occurring. Can anyone out > there give me additional suggestions?
Actually, I will need to move this post. I ran a Profiler trace, and
discovered that the login attempts were actually coming from our SharePoint Portal Server. Thanks for your assistance. [quoted text, click to view] "Bruce L-C [MVP]" wrote:
> Trying to get RS to work anonymously is a problem. The reason is that you > will lose administration rights with Report Manager, because even though you > might be an adminstrator it won't know that because you have set the website > to be anonymous. > > Most domains have a group for all the users in the domain (in our domain it > is called .... Users). I add that domain to a local group on the server and > then add that into the appropriate role in Report Manager (RS uses roll > based security). > > > -- > Bruce Loehle-Conger > MVP SQL Server Reporting Services > > "Ken Powers" <KenPowers@discussions.microsoft.com> wrote in message > news:C5AD756A-F4C6-4252-8CCB-48DCF0C04108@microsoft.com... > >I have what I think is an issue with Reporting Services. We have installed > > SQL Server 2005 Reporting Services on a Windows 2003 Server. Both SQL > > Server > > and Windows 2003 have been upgraded to SP1. > > > > My SQL Server is set to report failed login attempts. My EventViewer is > > constantly reporting the following error: > > > > Event Type: Failure Audit > > Event Source: MSSQLSERVER > > Event Category: (4) > > Event ID: 18456 > > Date: 07/28/2006 > > Time: 09:42:52 > > User: NT AUTHORITY\ANONYMOUS LOGON > > Computer: YKCLNSC > > Description: > > Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. [CLIENT: 10.7.54.59] > > > > For more information, see Help and Support Center at > > http://go.microsoft.com/fwlink/events.asp. > > Data: > > 0000: 18 48 00 00 0e 00 00 00 .H...... > > 0008: 08 00 00 00 59 00 4b 00 ....Y.K. > > 0010: 43 00 4c 00 4e 00 53 00 C.L.N.S. > > 0018: 43 00 00 00 07 00 00 00 C....... > > 0020: 6d 00 61 00 73 00 74 00 m.a.s.t. > > 0028: 65 00 72 00 00 00 e.r... > > > > > > IIS is also installed on this server, and anonymous access has been > > disabled. > > > > Here are the steps I have tried to resolve this error: > > > > 1) Grant the following accounts access to the instance of SQL Server: > > > > "NT AUTHORITY\ANONYMOUS LOGON", "NT AUTHORITY\NETWORK SERVICE", "NT > > AUTHORITY\SYSTEM", "YKCLNSC\IUSR_YKCLNSC", "YKCLNSC\IWAM_YKCLNSC" > > > > 2) Grant these same accounts membership in the "public" role in the master > > database > > > > 3) Grant these accounts membership in the "db_datareader" role in the > > master > > database > > > > 4) Grant these accounts membership in the "db_datareader" and > > "db_datawriter" roles in the master database > > > > 4) Grant these accounts membership in the "db_datareader", "db_datawriter" > > and "RSExecRole" roles in the master database > > > > 5) Grant these accounts membership in the "db_owner" role in the master > > database. > > > > None of these steps has stopped this error from occurring. Can anyone out > > there give me additional suggestions? > >
Don't see what you're looking for? Try a search.
|
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
| home · blog · groups | Questions? Comments? Contact the dn |