You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/big-data-cluster/deploy-active-directory.md
+10-5Lines changed: 10 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ description: Learn how to upgrade SQL Server Big Data Clusters in an Active Dire
5
5
author: NelGson
6
6
ms.author: negust
7
7
ms.reviewer: mikeray
8
-
ms.date: 11/27/2019
8
+
ms.date: 12/02/2019
9
9
ms.topic: conceptual
10
10
ms.prod: sql
11
11
ms.technology: big-data-cluster
@@ -170,13 +170,16 @@ AD integration requires the following parameters. Add these parameters to the `c
170
170
171
171
-`security.domainDnsName`: Name of your domain (e.g. `contoso.local`).
172
172
173
-
-`security.clusterAdmins`: This parameter takes **one AD group**. Members of this group will get administrator permissions in the cluster. This means that they will have sysadmin permissions in SQL Server, superuser permissions in HDFS and administrators in Controller. **Please note that this group needs to exist in AD before deployment begins**
173
+
-`security.clusterAdmins`: This parameter takes **one AD group**. Members of this group will get administrator permissions in the cluster. This means that they will have sysadmin permissions in SQL Server, superuser permissions in HDFS and administrators in Controller. **Please note that this group needs to exist in AD before deployment begins. Also note that this group can not be DomainLocal scoped in Active Directory. A domain local scoped group will result in deployment failure.**
174
174
175
-
-`security.clusterUsers`: List of the AD groups that are regular users (no administrator permissions) in the big data cluster. **Please note that these groups need to exist in AD before deployment begins**
175
+
-`security.clusterUsers`: List of the AD groups that are regular users (no administrator permissions) in the big data cluster. **Please note that these groups need to exist in AD before deployment begins. Also note that these groups can not be DomainLocal scoped in Active Directory. A domain local scoped group will result in deployment failure.**
176
176
177
-
-`security.appOwners`**Optional parameter**: List of the AD groups who have permissions to create, delete, and run any application. **Please note that these groups need to exist in AD before deployment begins**
177
+
-`security.appOwners`**Optional parameter**: List of the AD groups who have permissions to create, delete, and run any application. **Please note that these groups need to exist in AD before deployment begins. Also note that these groups can not be DomainLocal scoped in Active Directory. A domain local scoped group will result in deployment failure.**
178
178
179
-
-`security.appReaders`**Optional parameter**: list of the AD groups who have permissions to run any application. **Please note that these groups need to exist in AD before deployment begins**
179
+
-`security.appReaders`**Optional parameter**: list of the AD groups who have permissions to run any application. **Please note that these groups need to exist in AD before deployment begins. Also note that these groups can not be DomainLocal scoped in Active Directory. A domain local scoped group will result in deployment failure.**
180
+
181
+
**How to check AD group scope:**
182
+
[Click here for instructions](https://docs.microsoft.com/en-us/powershell/module/activedirectory/get-adgroup?view=winserver2012-ps&viewFallbackFrom=winserver2012r2-ps) for checking the scope of an AD group, to determine if it is DomainLocal.
180
183
181
184
If you have not already initialized the deployment configuration file, you can run this command to get a copy of the configuration.
- The secure AD mode will only work on `kubeadm` deployment environments and not on AKS right now. The `kubeadm-prod` deployment profile includes the security sections by default.
291
294
292
295
- Only one BDC per domain is allowed at this time. Enabling multiple BDCs per domain is planned for a future release.
296
+
297
+
- None of the AD groups specified in security configurations can be DomainLocal scoped. You can check the scope of an AD group by following [these instructions](https://docs.microsoft.com/en-us/powershell/module/activedirectory/get-adgroup?view=winserver2012-ps&viewFallbackFrom=winserver2012r2-ps).
|**allow_encrypted_value_modifications**|**bit**|**Applies to**: [!INCLUDE[ssSQL15_md](../../includes/sssql15-md.md)] and later, [!INCLUDE[ssSDS_md](../../includes/sssds-md.md)].<br /><br /> Suppresses cryptographic metadata checks on the server in bulk copy operations. This enables the user to bulk copy data encrypted using Always Encrypted, between tables or databases, without decrypting the data. The default is OFF. |
46
46
47
47
## Remarks
48
-
The *PasswordLastSetTime* properties are available on all supported configurations of SQL Server, but the other properties are only available when SQL Server is running on Windows Server 2003 or later and both CHECK_POLICY and CHECK_EXPIRATION are enabled. See [Password Policy](../../relational-databases/security/password-policy.md) for more information.
48
+
The *PasswordLastSetTime* properties are available on all supported configurations of SQL Server, but the other properties are only available when SQL Server is running on Windows Server 2003 or later and both CHECK_POLICY and CHECK_EXPIRATION are enabled. See [Password Policy](../../relational-databases/security/password-policy.md) for more information.
49
+
The values of the principal_id may be reused in the case that principals have been dropped and therefore is not guaranteed to be ever-increasing.
49
50
50
51
## Permissions
51
52
Any user can see their own user name, the system users, and the fixed database roles. To see other users, requires ALTER ANY USER, or a permission on the user. To see user-defined roles, requires ALTER ANY ROLE, or membership in the role.
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/choosing-between-url-access-and-soap.md
+4-3Lines changed: 4 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,17 +1,18 @@
1
1
---
2
-
title: "Choosing between URL access and SOAP in Reporting Services | Microsoft Docs"
2
+
title: "Choose between URL access and SOAP"
3
+
description: "There are two ways to integrate Reporting Services into custom applications: URL access and the Reporting Services SOAP API. Which to use depends on several factors."
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/integrating-reporting-services-into-applications.md
+3-1Lines changed: 3 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,5 +1,7 @@
1
1
---
2
-
title: "Integrating Reporting Services into Applications | Microsoft Docs"
2
+
title: "Integrating into Applications"
3
+
description: Reporting Services is an open and extensible reporting platform designed to provide developers with a comprehensive set of APIs for developing solutions.
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/integrating-reporting-services-using-reportviewer-controls-data-collection.md
+4-2Lines changed: 4 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,9 @@
1
1
---
2
-
title: Data collection in ReportViewer Control 2016
2
+
title: Data collection in ReportViewer Control
3
+
description: Anonymous usage data is collected by the control to better understand how customers use the product. Usage data enables future development to focus on improvements that are most relevant to customers.
3
4
author: maggiesMSFT
4
5
ms.author: maggies
6
+
ms.custom: seo-lt-2019
5
7
ms.reviewer: ""
6
8
ms.prod: reporting-services
7
9
ms.prod_service: reporting-services-native
@@ -10,7 +12,7 @@ ms.topic: reference
10
12
ms.custom: ""
11
13
ms.date: 09/18/2018
12
14
---
13
-
# Integrating Reporting Services Using ReportViewer Controls - Data Collection
15
+
# Integrate Reporting Services Using ReportViewer Controls - Data Collection
14
16
15
17
Anonymous usage data is collected by the control to better understand how customers make use of the product. Usage data enables future development to be focused on improvements that are most relevant to customers.
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/integrating-reporting-services-using-reportviewer-controls-get-started.md
+3-1Lines changed: 3 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,5 +1,7 @@
1
1
---
2
-
title: "Getting started with the ReportViewer 2016 control | Microsoft Docs"
2
+
title: "Get started with Report Viewer controls"
3
+
description: The Report Viewer controls can be used to integrate Reporting Services RDL reports into WebForms and WinForms apps.
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/integrating-reporting-services-using-reportviewer-controls.md
+4-3Lines changed: 4 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,10 +1,11 @@
1
1
---
2
-
title: "Integrating Reporting Services Using the Report Viewer Controls | Microsoft Docs"
2
+
title: "Integrate Using Report Viewer Controls"
3
+
description: Visual Studio provides two Report Viewer controls for integrating report viewing functionality into your applications.
# Integrating Reporting Services Using Report Viewer Controls
18
+
# Integrate Reporting Services Using Report Viewer Controls
18
19
[!INCLUDE[msCoName](../../includes/msconame-md.md)] Visual Studio 2015 provides two Report Viewer controls for integrating report viewing functionality into your applications. There is a version for Windows Forms-based applications and one for Web Forms applications. Each control provides similar functionality but each is designed to target their individual environments. Both controls can process reports that have been deployed to a report server (remote processing mode) or have been copied to a computer where [!INCLUDE[msCoName](../../includes/msconame-md.md)][!INCLUDE[ssNoVersion](../../includes/ssnoversion-md.md)][!INCLUDE[ssRSnoversion](../../includes/ssrsnoversion-md.md)] has not been installed (local processing mode).
19
20
20
21
The Report Viewer control does not include built-in support for dynamically adapting to different devices with different screen resolutions.
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/integrating-reporting-services-using-soap-web-application.md
+3-2Lines changed: 3 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,11 +1,12 @@
1
1
---
2
-
title: "Using the SOAP API in a Web Application - Reporting Services | Microsoft Docs"
2
+
title: "Use SOAP API in Web Applications"
3
+
description: You can access the full functionality of the report server through the Reporting Services SOAP API.
Copy file name to clipboardExpand all lines: docs/reporting-services/application-integration/integrating-reporting-services-using-soap-windows-application.md
+3-2Lines changed: 3 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,11 +1,12 @@
1
1
---
2
-
title: "Using the SOAP API in a Windows Application | Microsoft Docs"
2
+
title: "Use SOAP API in Windows Applications"
3
+
description: You can access the full functionality of the report server through the Reporting Services SOAP API. Access the Web service in a Windows application by writing code that makes calls to the service.
0 commit comments