Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.

Reply
urraghu
Frequent Visitor

PowerBi gateway - Data integrity and least privilege

‎04-29-2020 12:32 AM

I am using PowerBI gateway to connect to on-premise sql DB and import the data(in few tables) for creation of reports. Everything was setup successfully... But there are few security concerns raised reg data integrity and how can we ensure least privilege (meaning if a column in a table is not needed then powerBi should not have access ) ?

In other words, The internal on-prem data (column/table/db) which is not needed should not be exposed to PowerBI since it is an external cloud service.

 

would appreciate any help/pointers which supports Power Bi gateway data integrity and least privilages concept in the case mentioned above.

 

Labels:
Message 1 of 4
835 Views
0
3 REPLIES 3
v-xuding-msft
Community Support
Community Support

‎05-12-2020 02:38 AM

Hi @urraghu ,

It is not supported for data gateway. If you import data in Desktop and then publish to Service, you could use use T-SQL queries to return specific data.

5.PNG

Reference: 

Power BI Introduction: Working with SQL Server data in Power BI Desktop — Part 5 

 

If you want to hide data for different users, you could try RLS. Please reference:

Row-level security (RLS) with Power BI 

(Note: It is based on rows rather than columns. If use it, we need to transform data firstly)

 

Best Regards,
Xue Ding
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Message 3 of 4
803 Views
urraghu
Frequent Visitor
In response to v-xuding-msft

‎05-13-2020 09:39 PM

Hi @v-xuding-msft 

 

Thanks for your response.

to eliminate this unwanted data exposure to PowerBi data gateway , We are thinking to eliminate the data gateway completely by pushing the data first to azure sql from one-premise sql (as an intermediatry step ) and then connecting get data to Power BI directly from Azure SQL. 

 

do you also think this would be a better option in aspects of least privilage and data integrity ? any inputs/ideas on this would be appreciated. Thank You.

Message 4 of 4
794 Views
0
Wimverh
Resolver IV
Resolver IV

‎04-29-2020 12:56 AM

This is not related to gateway but to the security on your source system. 

When you create your gateway, a user is required, and this user will define what can be accessed.


Best approach is to create views, and only give access to the views with the minimal required data. 
If you are on sql server, you create them in a specified schema, then all views in the schema would 
be visible to power bi.

Message 2 of 4
831 Views
0

Helpful resources

Announcements
Microsoft Fabric Learn Together

Microsoft Fabric Learn Together

Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City

PBI_APRIL_CAROUSEL1

Power BI Monthly Update - April 2024

Check out the April 2024 Power BI update to learn about new features.

April Fabric Community Update

Fabric Community Update - April 2024

Find out what's new and trending in the Fabric Community.

View All