Hello,
I have a strange issue where users will periodically receive an rsAccessDenied message stating that the username of a different user doesn't have permissions to the report.
E.g. I'm logged into sharepoint as bshowers. I run an .rdl and receive the rsAccessDenied error stating the the userjdoe doesn't have sufficient permissions to perform this operation.
The ULS logs state the following:
Videntityinfo::isFreshToken reported failure.
and
Exception encountered for SOAP method GetPermissions: System.Web.Services.Protocols.SoapException: The permissions granted to userdomain\jdoe are insufficient for performing this operation. ---> Microsoft.ReportingServices.Diagnostics.Utilities.AccessDeniedException; The permissions granted to user 'domain\jdoe' are insufficient for performing this operation.
It appears to me that Sharepoint is trying to use a cached credential somewhere along the way but I have no idea how to identify or resolve this. Any help is appreciated.
Config:
Sharepoint 2010 with SSRS Integrated
Sharepoint WFE and SSRS are on scaled out on different Servers
SSRS is configured to use Windows Auth (not trusted account) and the RS data source in this case uses Kerberos Constrained Delegation and points to a Sharepoint List.
This issue has happened on other reports in different sites but is seemingly random.
Thanks,
Brandon