This is an interesting one.
We have implemented a custom security extension that we call from
within an application. We pass in a userid and password into the
LogonUser method, which is then checked against our database.
However, we have a Master database, and then a few other small
databases for different clients, so the extension uses another
supplied value to go to the master database, and lookup which database
it needs to verify the user in.
So, in the RSReportServer.config file, we store the connection string
to the Master DB.
This is used to connect to the Master DB, and then lookup the
connection string for the secondary DB.
The connection string for the secondary DB uses Integrated
Authentication (as our application requires this).
When the Application Pool (in IIS) that ReportServer runs under, is
set to the NetworkUser, we get an error returned from the WebService
(called from within our application), which says that the Network
Service was not authorized to access the secondary DB. Understandable
:)
So, we changed the Application Pool, so that it uses a Domain account
as it's Identity. Now we receive the following error back (and in all
the log files I can find)..
System.Web.Services.Protocols.SoapException: An internal error
occurred on the report server. See the error log for more details.
--> Microsoft.ReportingServices.Diagnostics.Utilities.InternalCatalogException:
An internal error occurred on the report server. See the error log for
more details. --> System.IO.FileNotFoundException: The system cannot
find the file specified. at
System.Runtime.InteropServices.Marshal.ThrowExceptionForHR(Int32
errorCode, IntPtr errorInfo) at
RSManagedCrypto.RSCrypto.ExportPublicKey() at
Microsoft.ReportingServices.Library.ConnectionManager.GetEncryptionKey()
at Microsoft.ReportingServices.Library.ConnectionManager.ConnectStorage()
at Microsoft.ReportingServices.Library.ConnectionManager.VerifyConnection()
at Microsoft.ReportingServices.Library.ConnectionManager.get_Connection()
at Microsoft.ReportingServices.Library.Storage.get_Connection() at
Microsoft.ReportingServices.Library.Storage.NewStandardSqlCommand(String
storedProcedureName) at
Microsoft.ReportingServices.Library.DBInterface.GetOneConfigurationInfo(String
key) at Microsoft.ReportingServices.Library.CachedSystemProperties.GetSystemProperty(String
name) at Microsoft.ReportingServices.Library.CachedSystemProperties.Get(String
name) at Microsoft.ReportingServices.Library.CachedSystemProperties.GetParameter(String
name) at Microsoft.ReportingServices.Library.RSService.get_MyReportsEnabled()
at Microsoft.ReportingServices.Library.RSService.PathToInternal(String
source) at Microsoft.ReportingServices.Diagnostics.CatalogItemContext.SetPath(String
path, Boolean validate, Boolean convert, Boolean translate) at
Microsoft.ReportingServices.Diagnostics.CatalogItemContext.SetPath(String
path) at Microsoft.ReportingServices.Diagnostics.CatalogItemContext..ctor(IPathTranslator
pathTranslator, String userSuppliedPath, String parameterName) at
Microsoft.ReportingServices.Library.RSService.FindItems(String folder,
String operation, SearchCondition[] properties) -- End of inner
exception stack trace -- at
Microsoft.ReportingServices.Library.RSService.FindItems(String folder,
String operation, SearchCondition[] properties) at
Microsoft.ReportingServices.WebServer.ReportingService.FindItems(String
Folder, BooleanOperatorEnum BooleanOperator, SearchCondition[]
Conditions, CatalogItem[]& Items) -- End of inner exception stack
trace -- at Microsoft.ReportingServices.WebServer.ReportingService.FindItems(String
Folder, BooleanOperatorEnum BooleanOperator, SearchCondition[]
Conditions, CatalogItem[]& Items)
The Application Pool User is a member of the IIS_WPG group, and has
been granted write access to the Windows\Temp folder, and the MSSQL
folder where RS is installed (and sub folders).
I also tried adding it to the local machine admin group, and it made
no difference.
That user also has DBO access to all the DBs on our database server.
Can anyone help please?
Thanks
RichardWill you send the report server web service log file?
Also, can you verify that the new identity has a user profile on the machine
(the user should have an entry under c:\Documents and Settings)?
--
This posting is provided "AS IS" with no warranties, and confers no rights
"Richard Greenwell" <lazygun@.gmail.com> wrote in message
news:42b7583d.0406251224.18af1b8@.posting.google.com...
> This is an interesting one.
> We have implemented a custom security extension that we call from
> within an application. We pass in a userid and password into the
> LogonUser method, which is then checked against our database.
> However, we have a Master database, and then a few other small
> databases for different clients, so the extension uses another
> supplied value to go to the master database, and lookup which database
> it needs to verify the user in.
> So, in the RSReportServer.config file, we store the connection string
> to the Master DB.
> This is used to connect to the Master DB, and then lookup the
> connection string for the secondary DB.
> The connection string for the secondary DB uses Integrated
> Authentication (as our application requires this).
> When the Application Pool (in IIS) that ReportServer runs under, is
> set to the NetworkUser, we get an error returned from the WebService
> (called from within our application), which says that the Network
> Service was not authorized to access the secondary DB. Understandable
> :)
> So, we changed the Application Pool, so that it uses a Domain account
> as it's Identity. Now we receive the following error back (and in all
> the log files I can find)..
> System.Web.Services.Protocols.SoapException: An internal error
> occurred on the report server. See the error log for more details.
> -->
Microsoft.ReportingServices.Diagnostics.Utilities.InternalCatalogException:
> An internal error occurred on the report server. See the error log for
> more details. --> System.IO.FileNotFoundException: The system cannot
> find the file specified. at
> System.Runtime.InteropServices.Marshal.ThrowExceptionForHR(Int32
> errorCode, IntPtr errorInfo) at
> RSManagedCrypto.RSCrypto.ExportPublicKey() at
> Microsoft.ReportingServices.Library.ConnectionManager.GetEncryptionKey()
> at Microsoft.ReportingServices.Library.ConnectionManager.ConnectStorage()
> at
Microsoft.ReportingServices.Library.ConnectionManager.VerifyConnection()
> at Microsoft.ReportingServices.Library.ConnectionManager.get_Connection()
> at Microsoft.ReportingServices.Library.Storage.get_Connection() at
> Microsoft.ReportingServices.Library.Storage.NewStandardSqlCommand(String
> storedProcedureName) at
>
Microsoft.ReportingServices.Library.DBInterface.GetOneConfigurationInfo(Stri
ng
> key) at
Microsoft.ReportingServices.Library.CachedSystemProperties.GetSystemProperty
(String
> name) at
Microsoft.ReportingServices.Library.CachedSystemProperties.Get(String
> name) at
Microsoft.ReportingServices.Library.CachedSystemProperties.GetParameter(Stri
ng
> name) at
Microsoft.ReportingServices.Library.RSService.get_MyReportsEnabled()
> at Microsoft.ReportingServices.Library.RSService.PathToInternal(String
> source) at
Microsoft.ReportingServices.Diagnostics.CatalogItemContext.SetPath(String
> path, Boolean validate, Boolean convert, Boolean translate) at
> Microsoft.ReportingServices.Diagnostics.CatalogItemContext.SetPath(String
> path) at
Microsoft.ReportingServices.Diagnostics.CatalogItemContext..ctor(IPathTransl
ator
> pathTranslator, String userSuppliedPath, String parameterName) at
> Microsoft.ReportingServices.Library.RSService.FindItems(String folder,
> String operation, SearchCondition[] properties) -- End of inner
> exception stack trace -- at
> Microsoft.ReportingServices.Library.RSService.FindItems(String folder,
> String operation, SearchCondition[] properties) at
> Microsoft.ReportingServices.WebServer.ReportingService.FindItems(String
> Folder, BooleanOperatorEnum BooleanOperator, SearchCondition[]
> Conditions, CatalogItem[]& Items) -- End of inner exception stack
> trace -- at
Microsoft.ReportingServices.WebServer.ReportingService.FindItems(String
> Folder, BooleanOperatorEnum BooleanOperator, SearchCondition[]
> Conditions, CatalogItem[]& Items)
> The Application Pool User is a member of the IIS_WPG group, and has
> been granted write access to the Windows\Temp folder, and the MSSQL
> folder where RS is installed (and sub folders).
> I also tried adding it to the local machine admin group, and it made
> no difference.
> That user also has DBO access to all the DBs on our database server.
> Can anyone help please?
> Thanks
> Richard|||I have emailed you the log file for this problem.
The user that the application pool runs under does not have an entry
under Docs and Settings, but it is a different user to that which the
Report Server Windows Service runs under, which Does have an entry
under Docs and Settings.
I have never seen an app pool user have a Docs and Settings folder :)
Thank you
Richard
"Brian Hartman [MSFT]" <brianhartman@.hotmail.com> wrote in message news:<OTBYLlYXEHA.748@.TK2MSFTNGP11.phx.gbl>...
> Will you send the report server web service log file?
> Also, can you verify that the new identity has a user profile on the machine
> (the user should have an entry under c:\Documents and Settings)?
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
<snip>sql
Showing posts with label password. Show all posts
Showing posts with label password. Show all posts
Thursday, March 29, 2012
Friday, March 23, 2012
help with a stored procedure
here is my sp
create proc [login]
(
@.email as varchar(200)
@.password as varchar(200)
)
as
begin
select customerid from customerlogin
where email = @.email
and password = @.password
End
print 'Welcome'
print (@.email)
End
This works fine, but if the email is wrong, what do I need to add to this to print that the email is wrong and not print 'welcome email'
Help, please.....
Hello,
I think what you want is:
create proc [login]
(
@.email as varchar(200)
@.password as varchar(200)
)
as
IF EXISTS (select customerid from customerlogin where email = @.email and password = @.password)
BEGIN
print 'Welcome'
print (@.email)
END
ELSE
BEGIN
print 'Bad login!'
print (@.email)
END
GO
As a side note, best practice is to NOT pass the users' password, but rather store a hash of the password and then when the user attempts to login, you simply create a hash of the entered password and compare it with the hashed value stored in the db.
Cheers
Rob
|||create procedure sp_login
@.email as varchar(200)
@.password as varchar(200)
AS
Select CASE WHEN ((Select COUNT(*) from customerlogin where email = @.email and password = @.password) = 0)
THEN Print 'Invalid Login'
ELSE Print 'Welcome ' + @.email
END AS [EmailTest]
Adamus
Friday, March 9, 2012
Help w/ installing SW on SQL server (2005).
I have a server that has SQL server 2005 installed. I am trying to install additional sw and there seems to be a password algorithm set by our network that is too advanced for the sw i am trying to install. I get a error message stating "password to short" and "password doesnt meet complexity requirements".
Does anyone know if there is a way to turn off, disable or bypass the password algorithm?
Thanks!If I understand you correctly...the password complexity checkbox is in the properties of the login (user) you are trying to use. Open the default instance on your server, expand the security folder and click on the logins folder. Right click the user you are attempting to login with and select properties. In the middle of the properties page you will see 3 check boxes with the options you are seeking. Hope this is what you needed.
Sunday, February 26, 2012
Help Start with MSDE???SA password??
While installing the MSDE I get the folowing error:
A storng SA password is required forsecurity reasons.
Please use SAPWD switch to supply the same.
Refer to readme for more details.
Setup will now exit.
A storng SA password is required forsecurity reasons.
Please use SAPWD switch to supply the same.
Refer to readme for more details.
Setup will now exit.
Thanks in advance
MustaphaThe installation instructions that came with your version of MSDE should include help on how to do this.
From where did you get MSDE?
Terri|||Hi,
If you need to change the sa password after the install, and you can uses the osql command line tool that will be available through your computer's command prompt.
If you don't know what a strong password is - it's one that meets certain criteria that make it harder for a hacker to break. I belive the min length is eight characters, it should contain a mix of at least three types of characters - upper case, lower case, numerals, punctuation marks (spaces are allowed). I'd opt for a 'pass-phrase'. Because you can use spaces, etc... you can use a phrase rather than just a string of alpha numeric charcaters. A medium length phrase, 40 charcaters or so, that mixes case and has some numerics is eaier to remember (without the need to write it down; a security problem in itself), and hard to crack.
Never leave the sa password blank.|||
I hope you get this. I am having the exact same trouble and the instructions don't tell me how to deal with this. I didn't have this problem the first time I loaded the program back in September but since my computer crashed and I had to reinstall everything, I am now having to fix this. I used the disc that came with the book and I also tried the version from this site.
Do you have any ideas?
Carolyn (crowbare@.sbcglobal.net)
The reason you're seeing this message is that the MSDE installation executable expects you to pass the parameter to the installer when you run it. It's not intuitive that you have to do this, so when you double-click the download file you will see an "error" indicating that you must specify a strong password.
To avoid this, open a command prompt and navigate to the directory in which the installation file was saved. Call the help on that file by executing my_msde_install_file.exe /?. It will tell you the appropriate switch to use to set the password at runtime.
Hope this helps.
Friday, February 24, 2012
help Sa password lost ?
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge
Hi
Login with windows authentication and at QA perform
A. Change the password of a login without the former password
This example changes the password for the login Victoria to ok.
EXEC sp_password NULL, 'ok', 'Victoria'
B. Change a password
This example changes the password for the login Victoria from ok to coffee.
EXEC sp_password 'ok', 'coffee'
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
> One of our guy as left our company, and he has configured SQL server 2000
> with sa password that he and I caanot remember.
> Is there a way to reset sa passord on SQL server 2000 in order to set an
> other one?
> thnaks for your help
> regards
> serge
|||See if this helps: http://vyaskn.tripod.com/administration_faq.htm#q9
HTH,
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge
|||Hi,
U can change the sa password by executing
sp_password.
u can have more information from bol.
hope this help
from
Doller
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge
Hi
Login with windows authentication and at QA perform
A. Change the password of a login without the former password
This example changes the password for the login Victoria to ok.
EXEC sp_password NULL, 'ok', 'Victoria'
B. Change a password
This example changes the password for the login Victoria from ok to coffee.
EXEC sp_password 'ok', 'coffee'
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
> One of our guy as left our company, and he has configured SQL server 2000
> with sa password that he and I caanot remember.
> Is there a way to reset sa passord on SQL server 2000 in order to set an
> other one?
> thnaks for your help
> regards
> serge
|||See if this helps: http://vyaskn.tripod.com/administration_faq.htm#q9
HTH,
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge
|||Hi,
U can change the sa password by executing
sp_password.
u can have more information from bol.
hope this help
from
Doller
help Sa password lost ?
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
sergeHi
Login with windows authentication and at QA perform
A. Change the password of a login without the former password
This example changes the password for the login Victoria to ok.
EXEC sp_password NULL, 'ok', 'Victoria'
B. Change a password
This example changes the password for the login Victoria from ok to coffee.
EXEC sp_password 'ok', 'coffee'
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
> One of our guy as left our company, and he has configured SQL server 2000
> with sa password that he and I caanot remember.
> Is there a way to reset sa passord on SQL server 2000 in order to set an
> other one?
> thnaks for your help
> regards
> serge|||See if this helps: http://vyaskn.tripod.com/administration_faq.htm#q9
--
HTH,
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge|||Hi,
U can change the sa password by executing
sp_password.
u can have more information from bol.
hope this help
from
Doller
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
sergeHi
Login with windows authentication and at QA perform
A. Change the password of a login without the former password
This example changes the password for the login Victoria to ok.
EXEC sp_password NULL, 'ok', 'Victoria'
B. Change a password
This example changes the password for the login Victoria from ok to coffee.
EXEC sp_password 'ok', 'coffee'
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
> One of our guy as left our company, and he has configured SQL server 2000
> with sa password that he and I caanot remember.
> Is there a way to reset sa passord on SQL server 2000 in order to set an
> other one?
> thnaks for your help
> regards
> serge|||See if this helps: http://vyaskn.tripod.com/administration_faq.htm#q9
--
HTH,
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge|||Hi,
U can change the sa password by executing
sp_password.
u can have more information from bol.
hope this help
from
Doller
help Sa password lost ?
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
sergeHi
Login with windows authentication and at QA perform
A. Change the password of a login without the former password
This example changes the password for the login Victoria to ok.
EXEC sp_password NULL, 'ok', 'Victoria'
B. Change a password
This example changes the password for the login Victoria from ok to coffee.
EXEC sp_password 'ok', 'coffee'
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
> One of our guy as left our company, and he has configured SQL server 2000
> with sa password that he and I caanot remember.
> Is there a way to reset sa passord on SQL server 2000 in order to set an
> other one?
> thnaks for your help
> regards
> serge|||See if this helps: http://vyaskn.tripod.com/administration_faq.htm#q9
--
HTH,
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge|||Hi,
U can change the sa password by executing
sp_password.
u can have more information from bol.
hope this help
from
Doller
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
sergeHi
Login with windows authentication and at QA perform
A. Change the password of a login without the former password
This example changes the password for the login Victoria to ok.
EXEC sp_password NULL, 'ok', 'Victoria'
B. Change a password
This example changes the password for the login Victoria from ok to coffee.
EXEC sp_password 'ok', 'coffee'
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
> One of our guy as left our company, and he has configured SQL server 2000
> with sa password that he and I caanot remember.
> Is there a way to reset sa passord on SQL server 2000 in order to set an
> other one?
> thnaks for your help
> regards
> serge|||See if this helps: http://vyaskn.tripod.com/administration_faq.htm#q9
--
HTH,
Vyas, MVP (SQL Server)
SQL Server Articles and Code Samples @. http://vyaskn.tripod.com/
"serge calderara" <sergecalderara@.discussions.microsoft.com> wrote in
message news:14A10F77-EB04-46C1-AA05-366315B17921@.microsoft.com...
One of our guy as left our company, and he has configured SQL server 2000
with sa password that he and I caanot remember.
Is there a way to reset sa passord on SQL server 2000 in order to set an
other one?
thnaks for your help
regards
serge|||Hi,
U can change the sa password by executing
sp_password.
u can have more information from bol.
hope this help
from
Doller
Subscribe to:
Posts (Atom)