Good afternoon, I have a question for anyone that may know/offer an opinion/solution for our reporting requirements within our environment:
Is it possible between SSRS and ConfigMgr 2012 to achieve granular security on custom folders within Reporting, and those same custom folders be displayed within the Console? For the custom folders, the desired configuration for security would be that certain administrators would have full control over Reports in their pertinent folder, but no other folder, and still maintain the ability to "run" the built-in ConfigMgr reports. This is in consideration of the following scenario: 1) One group of support engineers manage the infrastructure and need to have full access to manage and maintain the integrity of the ConfigMgr environment a. This is achieved/configured. Just outlining the tiered support structure 2) Support is provided to admins that do not have full control in ConfigMgr, and the admins are delegated access through RBA for maintaining the systems they manage a. This is where the Reporting rights come in to play. These admins would need to be able to create custom reports for their assets, but not have control over the canned ConfigMgr reports, except to run the report, and would not have the ability to manage any other admins reports outside of their own site designation If Security Scopes extended to the Report objects, we could offer that granularity easily. Just wanted to make sure if this is even a possible and, importantly, a supported configuration. I've read some information on what will change with R2 for Reporting and RBA, but didn't really see if that level of security was being introduced or not. I hope this all makes sense. Thank you! Best regards, Megan Wills [email protected]<mailto:[email protected]>
