Wednesday, March 28, 2012

How to remove domain admins from SRS

Hi
In our IT dept all IT users are members of the domain admin group (not my
idea). Is there a way to prevent them from seeing reports/folders? We only
want admins to see reports if they are given explicit permissions.
thanksThe reason this is happening is not because they are in the domain admin
group, it is because the domain admin group is in the local Adminstrators
group. This is the group that RS uses. So, on the server that is running RS
remove the domain admin group from the local group. Create new groups that
you put in the appropriate users and then assign the appropriate roles. Only
put true RS admins in the local admin group.
--
Bruce Loehle-Conger
MVP SQL Server Reporting Services
"darwin" <darwin@.discussions.microsoft.com> wrote in message
news:6722153F-A8A5-4B77-8DFA-772ADCFB7145@.microsoft.com...
> Hi
> In our IT dept all IT users are members of the domain admin group (not my
> idea). Is there a way to prevent them from seeing reports/folders? We
> only
> want admins to see reports if they are given explicit permissions.
> thanks|||Thanks Bruce ;)
"Bruce L-C [MVP]" wrote:
> The reason this is happening is not because they are in the domain admin
> group, it is because the domain admin group is in the local Adminstrators
> group. This is the group that RS uses. So, on the server that is running RS
> remove the domain admin group from the local group. Create new groups that
> you put in the appropriate users and then assign the appropriate roles. Only
> put true RS admins in the local admin group.
> --
> Bruce Loehle-Conger
> MVP SQL Server Reporting Services
> "darwin" <darwin@.discussions.microsoft.com> wrote in message
> news:6722153F-A8A5-4B77-8DFA-772ADCFB7145@.microsoft.com...
> > Hi
> > In our IT dept all IT users are members of the domain admin group (not my
> > idea). Is there a way to prevent them from seeing reports/folders? We
> > only
> > want admins to see reports if they are given explicit permissions.
> >
> > thanks
>
>

No comments:

Post a Comment