This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 54%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENN%3C/text%3E%3C/svg%3E)
After working long hours to setup Security on a SSRS 2019 Reporting Services Server Version 15.0.1102.1084 as described here https://learn.microsoft.com/en-us/sql/reporting-services/security/granting-permissions-on-a-native-mode-report-server?view=sql-server-ver15 by implementing Custom Security at Folder level we found that "something" or "someone" reset it to "Use same security as parent folder" but by looking at the HTTP Logs configures as advised here https://learn.microsoft.com/en-us/sql/reporting-services/report-server/report-server-http-log?view=sql-server-ver15#configuration-settings-for-report-server-http-log it seems impossible to find that info by reading the log files as all they show is something like:
2024-01-30 09:33:56.7048|INFO|10|Received request GET /api/v2.0/CatalogItems(Path='/')| RequestID = s_3636ea59-80ca-4fcd-aed7-fc8c8ec5c40d
2024-01-30 09:33:57.6099|INFO|17|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.9070459| RequestID = s_3636ea59-80ca-4fcd-aed7-fc8c8ec5c40d
2024-01-30 09:33:57.6099|INFO|11|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.9070374| RequestID = s_2e8d9336-43f3-4f7c-a01e-b1c84cc646ba
2024-01-30 09:33:57.6099|INFO|13|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.9071446| RequestID = s_1ea22d7e-eadc-4f46-9c85-54dfe4ab6a70
2024-01-30 09:34:10.2990|INFO|8|Received request GET /api/v2.0/Folders(Path='/KM%20-%20FolderName ')/AllowedActions| RequestID = s_8a7f13d6-3a9e-472e-a2c8-1ffc54ac1666
2024-01-30 09:34:10.3446|INFO|10|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0450926| RequestID = s_8a7f13d6-3a9e-472e-a2c8-1ffc54ac1666
2024-01-30 09:34:24.1064|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_8e531367-0a39-4b9f-be84-667e3101a79a
2024-01-30 09:34:24.2688|INFO|16|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.1628559| RequestID = s_8e531367-0a39-4b9f-be84-667e3101a79a
2024-01-30 09:34:29.1463|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_55bb3748-0ac5-4d0f-a046-e311ac0edea6
2024-01-30 09:34:29.1714|INFO|13|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0256693| RequestID = s_55bb3748-0ac5-4d0f-a046-e311ac0edea6
2024-01-30 09:34:29.1885|INFO|8|Received request GET /api/v2.0/Folders(5fec5d68-d226-4cdd-89e0-68bf96cb8641)/Policies| RequestID = s_e71912b8-68d3-4457-80be-318445fd97c0
2024-01-30 09:34:29.2606|INFO|10|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0723645| RequestID = s_e71912b8-68d3-4457-80be-318445fd97c0
2024-01-30 09:34:37.8016|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/')| RequestID = s_7c7f53e5-411f-4d9a-b016-4db8533853e4
2024-01-30 09:34:37.8252|INFO|17|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.024096| RequestID = s_7c7f53e5-411f-4d9a-b016-4db8533853e4
2024-01-30 09:35:34.4020|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_11d30dd8-d70f-402f-b90a-5e5564147e52
2024-01-30 09:35:34.4257|INFO|18|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0230405| RequestID = s_11d30dd8-d70f-402f-b90a-5e5564147e52
2024-01-30 09:35:38.2920|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_13363173-e16b-48d4-a238-c3f2a498b1eb
2024-01-30 09:35:38.3173|INFO|18|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0257608| RequestID = s_13363173-e16b-48d4-a238-c3f2a498b1eb
2024-01-30 09:35:38.3317|INFO|8|Received request GET /api/v2.0/Folders(5fec5d68-d226-4cdd-89e0-68bf96cb8641)/Policies| RequestID = s_0f1d793b-a7fc-4cd1-8b8d-3021c1a2296e
2024-01-30 09:35:38.3746|INFO|20|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0423886| RequestID = s_0f1d793b-a7fc-4cd1-8b8d-3021c1a2296e
Is there any way to find/audit which user clicked/reset "Use same security as parent folder" in SSRS 2019 Folder Security?
SSRS don't log such changes on object permissions.
Hi @Nenea Nelu,
Per my research, it seems that we could not find out which user changed the security.
You may consider creating custom role to avoid other user to change the folder security.
Regards,
Zoe Hui
If the answer is helpful, please click "Accept Answer" and upvote it.
Thanks @ZoeHui-MSFT - this is really helpful!
However I can't see how by excluding the "Manage Individual Subscriptions" the new role "Folder Browser only" would not let users change folder Security.
I don't know why I can't edit/save above comment so here is what I wanted to ask:
Isn't it the first option "Set Security for Individual Items" rather the one to be excluded in order to not allow regular users to change Folder Security?