Authentication Options with XLCubed Web Edition
When configuring XLCubed Web Edition, you will need to decide on the type of Authentication. Here's a brief summary of the options:
Anonymous authentication would be typically used where XLCubedWeb needs to be available to everyone with no restrictions, such as on the Internet or available to an entire organisation (with no restrictions) on an Intranet.
A user account needs to be specified, and all users will connect to the data source as this user. The database server can be on a different machine to the web server.
Basic Authentication would typically be used where it's not possible to configure Kerberos Delegation or if the set of users need to be maintained locally on the machine (independent of the Active Directory/Domain users).
The client will be prompted for a user-id and password - this will be authenticated against local users (if no domain is specified) or the active directory users. The database will be accessed using the given account and can be located on a different server to the web server.
The default and most common method, Windows Authentication (also known as Integrated Authentication) would be used in most organisations as the authentication, and therefore access, is controlled through the same mechanisms as other network resources.
The client's current credentials will be passed to the server and will be used when connecting to the datasource. If the database server is on a different server then they will only receive the credentials if Kerberos Delegation has been configured. (Kerberos will need to be set up and configured by a domain administrator. Most large organisations will have an existing process for doing this - the previous article contains all the information required.)
Note that if the datasource requires additional credentials to be entered, then this will be performed as a separate step when the report is opened. This can be the case when, for example, the datasource uses Basic authentication.