I have made RLS for departments, so some users can only see specific departments.
I wonder if users who are not included/defined in the RLS, but have access/permission to the APP (only app permission not workspace access), can see all the data in the report?I have a case that a user who is not defined in RLS gets the message visuals containing restricted data.
Go to Solution.
It depends. It depends on how you implemented RLS. It depends on where RLS is applied in the data model, and what the rules are.
In your case RLS seems to cover the entire data model which leads to the sub-optimal user experience for the non-RLS user.
View solution in original post
Thanks for the answer: under the following assumptions, how can I test what the final experience will look like?
- RLS specified in the data set
- One or more reports in the same workspace, sharing a common dataset
- Premium by capacity workspace
- Published app
- Users added to the app and not directly to the workspace
In the workspace, select dataset security , then the ellipsis next to a role and "test as role" .
Or have a real user access the app and show you what they can see and what they cannot see.
Learn how to create your own user groups today!
Click here to read more about the November 2021 Updates!
Join us, in-person, December 7–9 in Las Vegas, for the largest gathering of the Microsoft community in the world.