Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.
I want to make one "master" report in Power BI and then give each individual customer the ability the view the report but only with data from them. For example, the report might be sales by month, so the customer would be able to see their own sales by month, but not sales for all customers. Is this possible? I originally looked at providing a filter to only show the one customer, but it seems like there's no secure way to do this according to this post. They recommend RLS, but the application will be owning the data so every customer will essentially be sharing the same Power BI account. Are there any other alternatives? I know I could technically create a separate report for every customer, but that seems like overkill.
Thanks.
Solved! Go to Solution.
I came up with a potential solution, but I'm wondering if there is a better approach or if there are any potential security concerns with this approach.
Can anyone poke any holes in this approach? A hacker would need to know both a customer's ID and token to view their reports, so I think that would be secure? Is there a better approach I could be using instead?
EDIT: I spoke with Microsoft support, and they said the preferred approach is RLS, but that would require every customer to have a Power BI account. This isn't feasable in this case, so he said this workaround is probably the best approach given our constraints. I'm still interested though if anyone can think of any potential security holes with this approach.
I came up with a potential solution, but I'm wondering if there is a better approach or if there are any potential security concerns with this approach.
Can anyone poke any holes in this approach? A hacker would need to know both a customer's ID and token to view their reports, so I think that would be secure? Is there a better approach I could be using instead?
EDIT: I spoke with Microsoft support, and they said the preferred approach is RLS, but that would require every customer to have a Power BI account. This isn't feasable in this case, so he said this workaround is probably the best approach given our constraints. I'm still interested though if anyone can think of any potential security holes with this approach.
Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City
Check out the April 2024 Power BI update to learn about new features.
User | Count |
---|---|
13 | |
2 | |
2 | |
1 | |
1 |
User | Count |
---|---|
20 | |
3 | |
2 | |
2 | |
2 |