• State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 14 subscribers
  • Views 6296 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Quest Knowledge Portal Access Issues HTTP 401: Unauthorized

nicole.h.dodd.ctr
over 6 years ago

I have installed QKP on a server with IIS using Windows Authentication enabled. I am able to access QKP with the user account that I installed QKP application with. I am now trying to access QKP from my workstation with my own user account and I am recieving a HTTP 401: Unauthorized. Is there something within IIS that I need to configure that will allow an end user to access QKP from their laptop?

 

I appreciate any assistance.

 

Thanks,

Nicole

Parents
  • 0 over 6 years ago
    Please consider the following architecture points and make decisions based on your situation.
    IE (AD\jsmith) - IIS01/http://QPK - SSRS - SQL/db
    1. IE client might have Security Protection enabled (AD GPO on PC?)
    2. IIS01/http://QPK - Authenicate AD\jsmith. Also Website ApplicationPool Account to run the website. Make sure client AD\jsmith have a right to access the website (NTFS ARS, for example)
    3. SSRS http://SSRS/Reports | Security - Role "Content Manager" for AD\svc-intrust.
    4. SSRS Intrust SSRS Reports | DataSources - set use AD\svc-intrust to access SQL/intrust_audit_db
    5. SQL/intrust_audit_db - dbo for AD\svc-intrust

    (*) Note, if IIS01/QKP and SSRS and SQL are on different boxes, you might need to make AD\IIS01$, SSRS$ Computer Accounts to have "Trusted for Delegation" to be enabled in order to pass authenticated user token down the road. (it was an issue about 8 years ago, not sure today).
Reply
  • 0 over 6 years ago
    Please consider the following architecture points and make decisions based on your situation.
    IE (AD\jsmith) - IIS01/http://QPK - SSRS - SQL/db
    1. IE client might have Security Protection enabled (AD GPO on PC?)
    2. IIS01/http://QPK - Authenicate AD\jsmith. Also Website ApplicationPool Account to run the website. Make sure client AD\jsmith have a right to access the website (NTFS ARS, for example)
    3. SSRS http://SSRS/Reports | Security - Role "Content Manager" for AD\svc-intrust.
    4. SSRS Intrust SSRS Reports | DataSources - set use AD\svc-intrust to access SQL/intrust_audit_db
    5. SQL/intrust_audit_db - dbo for AD\svc-intrust

    (*) Note, if IIS01/QKP and SSRS and SQL are on different boxes, you might need to make AD\IIS01$, SSRS$ Computer Accounts to have "Trusted for Delegation" to be enabled in order to pass authenticated user token down the road. (it was an issue about 8 years ago, not sure today).
Children
No Data