Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now! Learn more

Reply
Anonymous
Not applicable

Help with logic on row level security

‎09-05-2022 09:26 AM

Please can someone help with a row level security query. 

I have the following tables

EntityA

User

PaulSmith@A.com

JohnSmith@A.com

CarlSmith@A.com

 

EntityB

Name

Icon

A

Z

B

Z

C

X

D

X

F

C

ZA

C

 

I need to create a DAX formula to allow row level security for the following logic

If a user is not in Entity A table then the user should be restricted to see only records where Icon <> C.  If the user is in Entity A then they will have access to all records in Entity B

.

Message 1 of 5
738 Views
0
1 ACCEPTED SOLUTION
PaulOlding
Solution Sage
Solution Sage
In response to Anonymous

‎09-06-2022 05:17 AM

@Anonymous 

Ah, yes.  Looks like it's the wrong way round.

VAR _User = USERPRINCIPALNAME()
RETURN
	(_User IN EntityA )
	|| ((NOT _User IN EntityA) && EntityB[Icon] <> "C")

PaulOlding_3-1662466448668.png

 

.. here's the results

PaulOlding_4-1662466489414.pngPaulOlding_5-1662466519651.png

 

 

View solution in original post

Message 4 of 5
653 Views
4 REPLIES 4
Anonymous
Not applicable

‎09-06-2022 02:30 AM

Thanks Paul.

 

Not sure if the above logic will work.  I need to add the filter to the Entity B table in the Mangage Roles section.

Message 5 of 5
670 Views
0
PaulOlding
Solution Sage
Solution Sage

‎09-05-2022 12:42 PM

Hi @Anonymous 

You could use this in the RLS filter expression for EntityB

VAR _User = USERPRINCIPALNAME()
RETURN
	(_User IN EntityA && EntityB[Icon] <> "C")
	|| (NOT _User IN EntityA)

Be aware that USERPRINCIPALNAME() can give you a different result in Desktop that it does in PBI Service.

Message 2 of 5
694 Views
0
Anonymous
Not applicable
In response to PaulOlding

‎09-06-2022 02:55 AM

I'm receiving the following error:

 

The number of arguments is invalid.  Function CONTAINSROW must have a value for each column in the table expression.

 

Is it because the User field is not specified in Entity A?

Message 3 of 5
664 Views
0
PaulOlding
Solution Sage
Solution Sage
In response to Anonymous

‎09-06-2022 05:17 AM

@Anonymous 

Ah, yes.  Looks like it's the wrong way round.

VAR _User = USERPRINCIPALNAME()
RETURN
	(_User IN EntityA )
	|| ((NOT _User IN EntityA) && EntityB[Icon] <> "C")

PaulOlding_3-1662466448668.png

 

.. here's the results

PaulOlding_4-1662466489414.pngPaulOlding_5-1662466519651.png

 

 

Message 4 of 5
654 Views

Helpful resources

Announcements
Power BI DataViz World Championships

Power BI Dataviz World Championships

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now!

December 2025 Power BI Update Carousel

Power BI Monthly Update - December 2025

Check out the December 2025 Power BI Holiday Recap!

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All