cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
P_Paul
Regular Visitor

PowerBI Service connection -> Kerberos encryption types

Hello

I set the connection between PowerBI Service and my on-premise SQL Analysis Services using Gateway. Everything working fine, I can refresh data set etc.

But security policies has changed and algorithm RC4_HMAC_MD5 from "Network security: Configure encryption types allowed for Kerberos" policy implemented on SQL Server was switched off. I tested it and looks like without RC4_HMAC_MD5 I can't set proper connection.

My question is, if there is any workaround to set proper connection without RC4_HMAC_MD5 algorithm turned on, for example using AES128/AES256?

Regards

1 ACCEPTED SOLUTION
RicoZhou
Community Support
Community Support

Hi @P_Paul 

I think your problem is that RC4 encryption is off and you need to configure a new encryption type to refresh your dataset in Power BI Service.

You may refer to this Method :Method 1: Configure the trust to support AES128 and AES 256 encryption in addition to RC4 encryption

This method adds the newer encryption types to the trust configuration, and does not require any changes to the client or the service. 

Or you can refer to this Method:Method 3: Configure the trust to support AES128 and AES 256 encryption instead of RC4 encryption

This method resembles method 1 in that you configure the trust attributes.

 

Best Regards,

Rico Zhou

 

If this post helps, then please consider Accept it as the solution to help the other members find it more quickly. 

 

View solution in original post

1 REPLY 1
RicoZhou
Community Support
Community Support

Hi @P_Paul 

I think your problem is that RC4 encryption is off and you need to configure a new encryption type to refresh your dataset in Power BI Service.

You may refer to this Method :Method 1: Configure the trust to support AES128 and AES 256 encryption in addition to RC4 encryption

This method adds the newer encryption types to the trust configuration, and does not require any changes to the client or the service. 

Or you can refer to this Method:Method 3: Configure the trust to support AES128 and AES 256 encryption instead of RC4 encryption

This method resembles method 1 in that you configure the trust attributes.

 

Best Regards,

Rico Zhou

 

If this post helps, then please consider Accept it as the solution to help the other members find it more quickly. 

 

View solution in original post

Helpful resources

Announcements
PBI User Groups

Welcome to the User Group Public Preview

Check out new user group experience and if you are a leader please create your group!

MBAS on Demand

Microsoft Business Applications Summit sessions

On-demand access to all the great content presented by the product teams and community members! #MSBizAppsSummit #CommunityRocks

MBAS Attendee Badge

Claim Your Badge & Digital Swag!

Check out how to claim yours today!

Top Solution Authors