How to find/audit which user clicked/reset "Use same security as parent folder" in SSRS 2019 Folder Security

Question

After working long hours to setup Security on a SSRS 2019 Reporting Services Server Version 15.0.1102.1084 as described here https://learn.microsoft.com/en-us/sql/reporting-services/security/granting-permissions-on-a-native-mode-report-server?view=sql-server-ver15 by implementing Custom Security at Folder level we found that "something" or "someone" reset it to "Use same security as parent folder" but by looking at the HTTP Logs configures as advised here https://learn.microsoft.com/en-us/sql/reporting-services/report-server/report-server-http-log?view=sql-server-ver15#configuration-settings-for-report-server-http-log it seems impossible to find that info by reading the log files as all they show is something like:

2024-01-30 09:33:56.7048|INFO|10|Received request GET /api/v2.0/CatalogItems(Path='/')| RequestID = s_3636ea59-80ca-4fcd-aed7-fc8c8ec5c40d 
2024-01-30 09:33:57.6099|INFO|17|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.9070459| RequestID = s_3636ea59-80ca-4fcd-aed7-fc8c8ec5c40d 
2024-01-30 09:33:57.6099|INFO|11|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.9070374| RequestID = s_2e8d9336-43f3-4f7c-a01e-b1c84cc646ba 
2024-01-30 09:33:57.6099|INFO|13|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.9071446| RequestID = s_1ea22d7e-eadc-4f46-9c85-54dfe4ab6a70 
2024-01-30 09:34:10.2990|INFO|8|Received request GET /api/v2.0/Folders(Path='/KM%20-%20FolderName ')/AllowedActions| RequestID = s_8a7f13d6-3a9e-472e-a2c8-1ffc54ac1666 
2024-01-30 09:34:10.3446|INFO|10|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0450926| RequestID = s_8a7f13d6-3a9e-472e-a2c8-1ffc54ac1666 
2024-01-30 09:34:24.1064|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_8e531367-0a39-4b9f-be84-667e3101a79a 
2024-01-30 09:34:24.2688|INFO|16|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.1628559| RequestID = s_8e531367-0a39-4b9f-be84-667e3101a79a 
2024-01-30 09:34:29.1463|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_55bb3748-0ac5-4d0f-a046-e311ac0edea6 
2024-01-30 09:34:29.1714|INFO|13|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0256693| RequestID = s_55bb3748-0ac5-4d0f-a046-e311ac0edea6 
2024-01-30 09:34:29.1885|INFO|8|Received request GET /api/v2.0/Folders(5fec5d68-d226-4cdd-89e0-68bf96cb8641)/Policies| RequestID = s_e71912b8-68d3-4457-80be-318445fd97c0 
2024-01-30 09:34:29.2606|INFO|10|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0723645| RequestID = s_e71912b8-68d3-4457-80be-318445fd97c0 
2024-01-30 09:34:37.8016|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/')| RequestID = s_7c7f53e5-411f-4d9a-b016-4db8533853e4 
2024-01-30 09:34:37.8252|INFO|17|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.024096| RequestID = s_7c7f53e5-411f-4d9a-b016-4db8533853e4 
2024-01-30 09:35:34.4020|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_11d30dd8-d70f-402f-b90a-5e5564147e52 
2024-01-30 09:35:34.4257|INFO|18|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0230405| RequestID = s_11d30dd8-d70f-402f-b90a-5e5564147e52 
2024-01-30 09:35:38.2920|INFO|8|Received request GET /api/v2.0/CatalogItems(Path='/KM%20-%20FolderName ')| RequestID = s_13363173-e16b-48d4-a238-c3f2a498b1eb 
2024-01-30 09:35:38.3173|INFO|18|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0257608| RequestID = s_13363173-e16b-48d4-a238-c3f2a498b1eb 
2024-01-30 09:35:38.3317|INFO|8|Received request GET /api/v2.0/Folders(5fec5d68-d226-4cdd-89e0-68bf96cb8641)/Policies| RequestID = s_0f1d793b-a7fc-4cd1-8b8d-3021c1a2296e 
2024-01-30 09:35:38.3746|INFO|20|Sending response. Response code ADMIN\UserName 200, Elapsed time 0:00:00.0423886| RequestID = s_0f1d793b-a7fc-4cd1-8b8d-3021c1a2296e 

Is there any way to find/audit which user clicked/reset "Use same security as parent folder" in SSRS 2019 Folder Security?

Answer 1

SSRS don't log such changes on object permissions.

Answer 2

Hi @Nenea Nelu，

Per my research, it seems that we could not find out which user changed the security.

You may consider creating custom role to avoid other user to change the folder security.

Regards，

Zoe Hui

---

If the answer is helpful, please click "Accept Answer" and upvote it.