Scenario:As shown in following figure, we have deployed two WFEs on least trusted domain (e.g., ABC domain) and central admin, database servers, and reporting services(i.e., Reporting Services running on SharePoint Integration Mode) are in Highly Trusted Domain (e.g., XYZ Domain).
Moreever there is an one-way trust between Extranet Domain and Intranet Domain. When users are trying to access or upload the rdl files to SharePoint environment, users are experiencing logon challenges (i.e., Double-Hop problem)
We were tried to engage MSFT customer support and they were said that we need to have a two-way trust between extranet domain and intranet domain. That is not make sense to our corporate architecture team. Then finally MSFT support asked us to move database+reporting services server and central adminstration server to least trusted domain (i.e., Extranet Domain) – this is obviously worst suggestion by MSFT support since we can not expose database and central administration servers to extranet. Finally, we dig into the issue and resolved the issue by adding the IP address of WFEs in host entry of each WFEs.
If you are experencing same issues as described above, please add the IP address of WFEs into host entries of each WFEs.
Hope this helps!