This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 41%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPP%3C/text%3E%3C/svg%3E)
Hi,
Using SQL server 2016 reporting services (SSRS) we allow authentication using basic auth from third party users who are not on our Active Directory; they are provided with access credentials that correspond to an AD account and they access via their browser. The basic auth is encrypted over TLS.
A new security measure being implemented by the third party means that browser security settings are blocking all forms of basic auth (regardless of TLS). This results in no login box being presented when trying to access SSRS and the users being unable to access.
Has anyone been able to successfully replace the basic auth with a custom authentication extension that provides an embedded login form that still accesses the same back-end AD permissions (that would be via basic auth). Or even any SAML integration options with Azure AD (that don't need domain trust).
There are various suggestions of custom authentication options https://learn.microsoft.com/en-us/sql/reporting-services/security/configure-custom-or-forms-authentication-on-the-report-server?view=sql-server-ver16 to achieve this, but a single workable solution hasn't yet been identified.
Many thanks in advance,
Pete
A SQL Server technology that supports the creation, management, and delivery of both traditional, paper-oriented reports and interactive, web-based reports.
Answer accepted by question author
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi @Peter Pollis You can refer to the SSRS 2016 custom authentication example here, I hope this will help you. https://github.com/Microsoft/Reporting-Services/tree/master/CustomSecuritySample2016 Best regards, Aniya
Hi @Peter Pollis
If the answer is helpful, please click Accept Answer and Up-Vote for the same. If you have any questions, please feel free to let me know.
Best regards,
Aniya
Hi Aniya, Thanks for the info thats very useful. Has anyone in the wider community been able to successfully implement such custom integration to perform SAML auth with Azure AD? Pete
Hi @Peter Pollis You can refer to this link: https://learn.microsoft.com/en-us/power-bi/report-server/azure-application-proxy. This article discusses how to use Azure Active Directory Application Proxy to connect to Power BI Report Server and SQL Server Reporting Services (SSRS) 2016 and later. Best regards, Aniya