cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Highlighted
Frequent Visitor

Is it possbile that a specif user can bypass the RLS security?

We are facing a particular case with an User that even he is assigned to a specific role and is set as "Viewer" seems to by pass the security role. 

It's extremely curious cause with all other users of our domain the role is working fine. 

Are there role on Office 365 that can bypass the security role?

Thanks 

 

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Frequent Visitor

Re: Is it possbile that a specif user can bypass the RLS security?

We have republished  the report and re-inserted the user on the workspace.

Now the security is working fine.

I think our supplier had fixed the role which likely was not working correctly.

 

Thanks for your help

 

View solution in original post

5 REPLIES 5
Highlighted
Solution Sage
Solution Sage

Re: Is it possbile that a specif user can bypass the RLS security?

Hi @thebigwhite ,

 

Is this an Analysis Service live connection?  According to this article, https://docs.microsoft.com/en-us/power-bi/admin/service-admin-rls  "You can't define roles within Power BI Desktop for Analysis Services live connections. You need to do that within the Analysis Services model."  

 

Also, when in Desktop and you select "View as Roles" and select the role that this person is in does it work as expected?  Can you confirm that you only have this person in one single role and not conflicting roles?

 

I would appreciate Kudos if my response was helpful. I would also appreciate it if you would Mark this As a Solution if it solved the problem. Thanks!
Highlighted
Community Support
Community Support

Re: Is it possbile that a specif user can bypass the RLS security?

HI @thebigwhite,

I'd like to suggest you check this account to confirm he only has 'read' permission of the related dataset, or the RLS filter effect will be ignored.
Regards,

Xiaoxin Sheng

Community Support Team _ Xiaoxin
If this post helps, please consider accept as solution to help other members find it more quickly.
Highlighted
Frequent Visitor

Re: Is it possbile that a specif user can bypass the RLS security?

The account has got only viewer permission and the dataset is not linked to Analysis services (just dataflow).

 

Highlighted
Community Support
Community Support

Re: Is it possbile that a specif user can bypass the RLS security?

HI @thebigwhite,

Did this user has global admin permission of a group of specific workspaces? How did you RLS configure, have you enabled UPN on this user that mapping this user to other accounts? (if RLS is based on the user mapping table, please also take a look on it to confirm if anything specific on that user)

Regards,

Xiaoxin Sheng

Community Support Team _ Xiaoxin
If this post helps, please consider accept as solution to help other members find it more quickly.
Highlighted
Frequent Visitor

Re: Is it possbile that a specif user can bypass the RLS security?

We have republished  the report and re-inserted the user on the workspace.

Now the security is working fine.

I think our supplier had fixed the role which likely was not working correctly.

 

Thanks for your help

 

View solution in original post

Helpful resources

Announcements

August Community Highlights

Check out a full recap of the month!

Experience what’s next for Power BI

Join us for an in-depth look at the new Power BI features and capabilities at the free Microsoft Business Applications Launch Event.

Top Solution Authors
Top Kudoed Authors