Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.

Reply
vandenhende
Frequent Visitor

PowerBI Admin Rest API - Azure app registration - dont know how to connect from Postman

‎10-06-2021 01:23 AM

We are trying to build a database with PowerBI auditing information.

In our case, the ideal solution is, that we want to load  data from the REST APIs towards AWS. (I know.. don't ask... 🙂

 

We have setup an Azure AD App registration for this. Inspired by several youtube videos and this blog post:
How to Call the Power BI REST API from Postman - Carl de Souza

For this app, we have requested our office tenant admin to approve Tenant.Read.All privileges.
That is probably a little different than what Carl described. I dont want to use the "delegated permissions" since I dont want to logon with my corporate ID, but I want to login with a clientID and secret coming from our AWS environment. 

vandenhende_0-1633507649003.png

vandenhende_1-1633507871167.png

 

My issue is now, that I am trying to connect from Postman, but I am failing.
First I am trying to do a Post to get a bearer token. This seems succesful, although I am wondering: should I also see a "scope" mentioned in the result? I have seen it with other screenshots on the web.

 

vandenhende_0-1633512318480.png

 

 

Then, while trying to do a simple get, using this bearer token, I am getting a "401 unauthorized". 

vandenhende_3-1633508369856.png

 

Can someone please suggest what I am doing wrong? Any suggestion would be highly appreciated!

 

Update:

meanwhile I came across this article about Service Principals
Enable service principal authentication for read-only admin APIs - Power BI | Microsoft Docs

Would that be the right way to go? I tried some of the steps, and went to a different error message:

vandenhende_0-1633528680408.png

 



 

 

Labels:
Message 1 of 4
2,261 Views
0
1 ACCEPTED SOLUTION
alex_chiraples
Frequent Visitor

‎10-07-2021 02:57 AM

@vandenhende , the link is the right way to do it. You need to:

1. Create the security group

2. Add the service principal in a security group.

3. Enable the  "Allow service principals to use read only ..." feature

4. Add the security group in "Allow service principals to use read only ..." 

 

Re-test after 10-15 minutes (AAD groups and member propagation in all services) 

View solution in original post

Message 3 of 4
2,178 Views
0
3 REPLIES 3
alex_chiraples
Frequent Visitor

‎10-07-2021 02:57 AM

@vandenhende , the link is the right way to do it. You need to:

1. Create the security group

2. Add the service principal in a security group.

3. Enable the  "Allow service principals to use read only ..." feature

4. Add the security group in "Allow service principals to use read only ..." 

 

Re-test after 10-15 minutes (AAD groups and member propagation in all services) 

Message 3 of 4
2,179 Views
0
vandenhende
Frequent Visitor
In response to alex_chiraples

‎10-07-2021 02:59 AM

Indeed! I just figured out that this works!

It took quite some time to learn that this was the right approach. 

 

Thanks for your support!

 

Message 4 of 4
2,168 Views
0
JoeBlackBlood
Frequent Visitor

‎10-07-2021 01:42 AM

I maybe won't help to much with this but, for the app that we have, we need to invite the user as a guest to the tenant and add him to the security group on the Azure ad, then that group need to be part of the app access. When you create any app on Azure, you also have enterprise applications and under your app, you need to add that group otherwise, they won't be able to access it.

Message 2 of 4
2,192 Views

Helpful resources

Announcements
Microsoft Fabric Learn Together

Microsoft Fabric Learn Together

Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City

PBI_APRIL_CAROUSEL1

Power BI Monthly Update - April 2024

Check out the April 2024 Power BI update to learn about new features.

April Fabric Community Update

Fabric Community Update - April 2024

Find out what's new and trending in the Fabric Community.

View All