Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Get Fabric Certified for FREE during Fabric Data Days. Don't miss your chance! Request now

Reply
Anonymous
Not applicable

Help with logic on row level security

‎09-05-2022 09:26 AM

Please can someone help with a row level security query. 

I have the following tables

EntityA

User

PaulSmith@A.com

JohnSmith@A.com

CarlSmith@A.com

 

EntityB

Name

Icon

A

Z

B

Z

C

X

D

X

F

C

ZA

C

 

I need to create a DAX formula to allow row level security for the following logic

If a user is not in Entity A table then the user should be restricted to see only records where Icon <> C.  If the user is in Entity A then they will have access to all records in Entity B

.

Message 1 of 5
728 Views
0
1 ACCEPTED SOLUTION
PaulOlding
Solution Sage
Solution Sage
In response to Anonymous

‎09-06-2022 05:17 AM

@Anonymous 

Ah, yes.  Looks like it's the wrong way round.

VAR _User = USERPRINCIPALNAME()
RETURN
	(_User IN EntityA )
	|| ((NOT _User IN EntityA) && EntityB[Icon] <> "C")

PaulOlding_3-1662466448668.png

 

.. here's the results

PaulOlding_4-1662466489414.pngPaulOlding_5-1662466519651.png

 

 

View solution in original post

Message 4 of 5
643 Views
4 REPLIES 4
Anonymous
Not applicable

‎09-06-2022 02:30 AM

Thanks Paul.

 

Not sure if the above logic will work.  I need to add the filter to the Entity B table in the Mangage Roles section.

Message 5 of 5
660 Views
0
PaulOlding
Solution Sage
Solution Sage

‎09-05-2022 12:42 PM

Hi @Anonymous 

You could use this in the RLS filter expression for EntityB

VAR _User = USERPRINCIPALNAME()
RETURN
	(_User IN EntityA && EntityB[Icon] <> "C")
	|| (NOT _User IN EntityA)

Be aware that USERPRINCIPALNAME() can give you a different result in Desktop that it does in PBI Service.

Message 2 of 5
684 Views
0
Anonymous
Not applicable
In response to PaulOlding

‎09-06-2022 02:55 AM

I'm receiving the following error:

 

The number of arguments is invalid.  Function CONTAINSROW must have a value for each column in the table expression.

 

Is it because the User field is not specified in Entity A?

Message 3 of 5
654 Views
0
PaulOlding
Solution Sage
Solution Sage
In response to Anonymous

‎09-06-2022 05:17 AM

@Anonymous 

Ah, yes.  Looks like it's the wrong way round.

VAR _User = USERPRINCIPALNAME()
RETURN
	(_User IN EntityA )
	|| ((NOT _User IN EntityA) && EntityB[Icon] <> "C")

PaulOlding_3-1662466448668.png

 

.. here's the results

PaulOlding_4-1662466489414.pngPaulOlding_5-1662466519651.png

 

 

Message 4 of 5
644 Views

Helpful resources

Announcements
November Power BI Update Carousel

Power BI Monthly Update - November 2025

Check out the November 2025 Power BI update to learn about new features.

Fabric Data Days Carousel

Fabric Data Days

Advance your Data & AI career with 50 days of live learning, contests, hands-on challenges, study groups & certifications and more!

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All