cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
juanjoseblancob Frequent Visitor
Frequent Visitor

Slicer values with row level security

Hi!

 

I have the following issue. My report is basically driven by a slicer with all customer names, and this works fine for those of us with access to the full data set since we choose customers on the slicer and see the data for each.

 

Now, I want to share the report with actual customers, each of which should obviously only see their data. I can essentially achieve this with Row Level Security, BUT I am facing the following: the customers slicer does not change to have as the only option the one value in the customers table that I allow each role to see, but actually it retains the "last" value the report had for the slicer (although it´s not a valid value for that role!).

 

Example to explain:

- The last value the slicer had was Customer Y (but with full access I can see all other customers in the slicer)

- I change to a role that can only see Customer X... and the charts are all empty because the slicer remains set on Customer Y, whose data this user has no access to. If I display the values in the slicer, I can see it´s only Customer X, but as a user experience is clunky (plus they see other client´s name as they go into the report).

 

By the way, I can experience exactly the same behaviour if I use URL filters (and filter by Customer X); the report is filtered to only data from Customer X, but the slicer keeps the "last value" it had.

 

Any option to "initialize" the slicer properly?

 

Thanks in advance!

6 REPLIES 6
v-yulgu-msft Super Contributor
Super Contributor

Re: Slicer values with row level security

Hi @juanjoseblancob,

 

Please check whether this porblem exists in desktop. If yes, please re-create the RLS and check again.

1.PNG

 

I cannot reproduce the same problem on my side. Please test my sample .pbix file on your side to see if issue persists.

 

Best regards,

Yuliana Gu

Community Support Team _ Yuliana Gu
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
juanjoseblancob Frequent Visitor
Frequent Visitor

Re: Slicer values with row level security

Hi Yuliana.

 

Thanks a lot for your reply, and for the sample to test. Indeed, the problem does happen in the very simple file you sent. The key aspect to test it, though, is the following:

 

  1. Select a customer on the slicer (for instance, select X) -> this is the key step.
  2. Then change to a role that doesn´t see X (for instance, change to Role 2 which can only see Y)

You will see how the slicer still keeps X! If you don´t have anything preselected on the slicer (that is, if you don´t do step 1), then all works fine... but that´s not my scenario Smiley Sad

 

Thanks in advance for your follow up.

 

Juan

juanjoseblancob Frequent Visitor
Frequent Visitor

Re: Slicer values with row level security

Hi again! I could finally get back to my PowerBI community account after all the mess with associating non-organizational and organizational accounts Smiley Sad

 

Were you able to replicate this Yuliana? Should I report it as a bug?

 

Cheers,

 

Juan

v-yulgu-msft Super Contributor
Super Contributor

Re: Slicer values with row level security

Hi @juanjoseblancob,

 

 Please review the response from PG:

 

By Design. RLS causes a Table-level filter based on the role, it does not update any slicer visuals. It is an "invisible" filter applied to every query that is generated.

 

Best regards,

Yuliana Gu

Community Support Team _ Yuliana Gu
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
TheGoochIsLoose New Member
New Member

Re: Slicer values with row level security

I'm coming to this conversation late, but I'm hoping someone can enlighten me on how to work around it.

In our case, similar to the original poster, we have a subset of data that is responsive via RLS to the authenticated user. There is a single-select slicer that lets the user choose subset data within the RLS data they have access to. However, when the PBIX is published and shared, whatever option was selected at the time is saved as the default.

Client X (given the earlier example) should not be aware of Client Y's data subsets.

So, if this is by design, how do I make sure that a slicer gets refreshed before being displayed to the end-user? The only solution I have found so far is to turn off single-select, and clear all the checkboxes before publishing the PBIX. This is not preferable, since only one item should be chosen at a time.

Is there any "on-load" functionality, or ANY functionality that would force a refresh of the slicer and visuals after RLS is applied?

 

Thanks,

R. Gooch

santiagomur Frequent Visitor
Frequent Visitor

Re: Slicer values with row level security

hi, 


on this file happens, if you select X and then the selec the role 2 you see the X and the Y, if you deselect the x it disappear but the need is they happens when the role change.

Anotación 2019-09-24 151019.png

 

 

@v-yulgu-msft 

 

regards

Helpful resources

Announcements
Community Highlights

Community Highlights

Find out what's new in the Power BI Community!

Summit North America

Power Platform Summit North America

Register by September 5 to save $200

Virtual Launch Event

Microsoft Business Applications Virtual Launch Event

Watch the event on demand for an in-depth look at the new innovations across Dynamics 365 and the Microsoft Power Platform.

MBAS Gallery

Watch Sessions On Demand!

Continue your learning in our online communities.

Top Kudoed Authors
Users Online
Currently online: 6 members 3,534 guests
Please welcome our newest community members: