Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.
Hi
I have created a role in power bi desktop to restrict data for 1000 different users and published to web service. Now I want to share report to 1000 mebers in my team. Is there any way to restrict data with out adding them to role in dataset security options or manually want to add 1000 users one by one for role.
Hi @praneeth,
Power BI RLS is used for imported data models and DirectQuery connections. If you connect live to SSAS data models, you can configure the RLS on SSAS side. See: https://docs.microsoft.com/en-us/power-bi/service-admin-rls
In your scenario, as you already created the RLS roles in Power BI desktop, the report should use import or DirectQuery mode. At this time, you need to add users as members of these RLS roles to restrict data access. Instead of add individual user, you can add security group or distribution list as RLS role members. This member has to be within your organization. You cannot add Groups created within Power BI. See: https://docs.microsoft.com/en-us/power-bi/service-admin-rls#working-with-members
Best Regards,
Qiuyun Yu
That means assigning a group or user to role in dataset security option is mandatory to restrict data. But for security group also we want to add 1000 users one by one. For example I have users table with columname usermailID contains user mail ID's and another table has region data joined with users table. I created a role by using filters usermaiID = username() and region = "US" in one role.
Then also I need to assign all users to role in dataset security option? it is not possible without assigning to role?
Hi @praneeth,
Yes. The RLS role on Power BI side only affect the member belong to Security option of the dataset.
Best Regards,
Qiuyun Yu
Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City
Check out the April 2024 Power BI update to learn about new features.