Earn the coveted Fabric Analytics Engineer certification. 100% off your exam for a limited time only!
Hi all
I am facing a big challenge to build a security system inside my compnay ,
its simillar to the follwing problem :
imagine a school system :
I have three dim tables (Managers , Teachers and Students) that are suppose to have access to the result table in deifferent levels :
- Managers have two level of access full , and limit and limit depends on the year
- Teachers are allowed to access their subjects in their years
- Student can only access their grads.
Now I need to achieve this and I don’t know what is the starting point , I could rebuild the whole data model and add columns to the tables.
It will be great if I received you feedback and your suggested solution to solve this .
Any YouTube videos that discuss something similar or articles will be highly appreciated 🙂
I know their are no short answer for this , but I hope it will be usefull for everybody to solve sutch a problem 🙂
Thanks in advacne
REgards
First you need to decide if you want to use static RLS (based on Role group membership) or dynamic RLS (based on individual USERPRINCIPALNAME).
Since its groupe level security so I will use static RLS !
Cool. Next step is to define the roles. I think you have that already. Next step is to define the scope for each role, ie the DAX formula that evaluates to true for each of them. These formulas then need to be applied to the DIMENSION tables in your data model. No point in applying the RLS to fact tables - the RLS rules must be able to impact filters.
User | Count |
---|---|
128 | |
108 | |
100 | |
65 | |
62 |
User | Count |
---|---|
137 | |
115 | |
102 | |
71 | |
61 |