Re: Using forms authentication to control security access to msolap.asp. Is it possible using ASP.NET?

Analysis Services only supports NT authentication. Ultimately everything has
to get back to an NT account. See the section titled "Security
Administration" in the AS Operations Guide
http://www.microsoft.com/technet/prodtechnol/sql/2000/maintain/anservog.mspx
and additional information in the Improved Web Connectivity white paper
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnsql2k/html/sql_datapump.asp

What kind of connectivity do you have between the IIS server (where your
ASP.NET app is running) and the Analysis server? Are they on the same
machine? Or different machines in same domain? Or different machines with a
firewall between them?

What kind of access are you using between your ASP.NET app and Analysis
Services? TCP/IP or http access? If using TCP/IP then your server name in
the connectstring is the machine name for the Analysis server -- if using
http access then your server name in the connectstring is:
http://<machinename>/<virtual_directory_for_where_msolap_dot_asp_lives>

What that I could provide some guidance around what your options are.
--
Dave Wickert [MSFT]
dwickert@xxxxxxxxxxxxxxxxxxxx
Program Manager
BI SystemsTeam
SQL BI Product Unit (Analysis Services)
--
This posting is provided "AS IS" with no warranties, and confers no rights.


"Ravi Ambros Wallau" <nospam@xxxxxxxxxx> wrote in message
news:%23UxihJrcFHA.2688@xxxxxxxxxxxxxxxxxxxxxxx
> Hi:
> My organization has developed a portal made in ASP.NET (C#). This
> portal is open for Internet, and we decide to use Forms Authentication to
> validate user and password. This authentication doesn't seems to be valid
> (or not) when using MSOLAP.ASP. It's a big security risk for me leave the
> MSOLAP.ASP page open "to the world", and it's really boring to the user
> tip a logon information again, and also the extra effort to keep a second
> user database (in Windows or in another place) is tedious, error prone and
> inneficient.
> Is there some way that force MSOLAP.ASP to use Forms Authenticatiom?
> Debugging this ASP page, I have some suspicious that cookies and another
> informations are sent with MSOLAP request, better saying, some browser
> informations are sent within ActiveX request.
> But I really can't find any usefull to validate the user. Session is
> unavaiable for me, I believe that the reason is that my application is
> developed is ASP.NET.
> Is there some port of MSOLAP.ASP for .Net platform? Is it possible to
> use Forms Authentication? Did anyone had the same problem?
>
> Thanks,
> Ravi.
>


.

Loading