Configmgr 2012 Reporting throws an error at you when trying to run a report

6:29 am in ConfigMgr, ConfigMgr 2012, ConfigMgr 2012 SP1, ConfigMgr Reporting, Report, Reporting, SCCM 2012, SCCM 2012 SP1, SQL Reporting services, System Center by Kenny Buntinx [MVP]

 

Did you ever configured reporting in Configmgr 2012 and specified a reporting service account like below ?

image

Did you get an error thrown at you like this when you try to run a report ?

SNAG-0085

If we look a little closer , we see the following line that is very interesting :”Logon failure: the user has not been granted the requested logon type at this computer “ as shown below in the log file

——————————-

System.Web.Services.Protocols.SoapException: An error has occurred during report processing. —> Microsoft.ReportingServices.ReportProcessing.ProcessingAbortedException: An error has occurred during report processing. —> Microsoft.ReportingServices.ReportProcessing.ReportProcessingException: Cannot impersonate user for data source ‘AutoGen__5C6358F2_4BB6_4a1b_A16E_8D96795D8602_’. —> Microsoft.ReportingServices.Diagnostics.Utilities.LogonFailedException: Log on failed. Ensure the user name and password are correct. —> System.ComponentModel.Win32Exception: Logon failure: the user has not been granted the requested logon type at this computer
   at Microsoft.ReportingServices.WebServer.ReportingService2005Impl.GetReportParameters(String Report, String HistoryID, Boolean ForRendering, ParameterValue[] Values, DataSourceCredentials[] Credentials, ReportParameter[]& Parameters)
   at Microsoft.ReportingServices.WebServer.ReportingService2005.GetReportParameters(String Report, String HistoryID, Boolean ForRendering, ParameterValue[] Values, DataSourceCredentials[] Credentials, ReportParameter[]& Parameters)

——————————-

Solution :  When you request a service account , make sure that people creating this service account grant you the right "Allow log on locally" thru Local Policy or Group Policy. For more information about configuring this group policy on Windows Server 2003, see the Microsoft TechNet article, "Allow log on locally".  To solve this you will need to change the Local Security Policy of the server.

As a best practice , most service accounts don’t get per default the "Allow log on locally" for security best practices .However in this case it is needed to run the reports .

Hope it Helps ,

Kenny Buntinx