Single Sign-on Active Directory and ReportNet

[gbardelli]

Hi all,
I'm trying to set up single sign-on between ReportNet v1.1MR2 and Active Directory, but at the moment I had no success...
First question: how do I need to set security option on IIS on the crn pages?
Second: is there any workaround on the Trusted for Delegation option for the system running the RN service (seems not working)?
Third: I tried to read Active Directory as LDAP (so using LDAP namespace instead of ADS) but even following Cognos support directions it is not working: did anyone experience this solution?
Is there anyone with experience on these topics that can help me?
Many thanks
Ciao
Gianni

 

[flex13]

This is probably because IIS is not returning the required information. This was actually logged with MS and as of yet, they have still no identified why this is occurring.

There is a setting you can put in to just pull the REMOTE_USER variable and bypass Kerberos authentication altogether.

Call support for this one.
If LDAP isn't working, then chances are there is a setting that is wrong.

 

[christenhusz]

did anyone implemented single signon between reportnet ans active directory succesfully???

and more important.... how did you do it!?!

thanks!

Christenhusz

 

[flex13]

Yes, many people have SSO working with AD and ReportNet. Settings for the AD provider use the kerberos protocol and thus have a set of requirements to work. Call Support for this list.