Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI Data Visualization World Championships is back! It's time to submit your entry. Live now!

Reply
JibinSebastian
Helper II
Helper II

Service Principal for Semantic model Refresh Issue

Wednesday

Hi All,
We are trying to set up a service principal for semantic model refresh. We have created the service principal ID, a security group, and added the service principal to all the required workspaces.

However, when we try to create a new connection for the semantic model to the Gold Fabric Warehouse using the service principal, we encounter the following error:

“Unable to create connection for the following reason: It looks like the refresh token expired. Please go to this dataset’s settings page and re-enter the credentials for the data source.”

Are we missing something in the setup?

Specifically, what value should be provided in the Service Principal ID field?

Could someone help me understand the correct way to configure this? I am new to Fabric and currently managing Fabric on my own in the organization. We do have a tenant admin who has already created the service principal.

JibinSebastian_0-1768406463779.png

 

 



Labels:
Message 1 of 3
111 Views
0
2 REPLIES 2
ssrithar
Advocate II
Advocate II

Thursday

Hi @JibinSebastian ,

Please find the steps to Fix the issue

  1. Recreate the connection:

    • Go to the workspace → Create new connection

    • Use:

      • Tenant ID = Directory ID

      • Service Principal ID = Application (Client) ID

      • Service Principal Key = Client secret value

  2. Verify permissions:

    • The SP must be assigned to the workspace (Contributor or Member role)

    • Ensure the SP is allowed under tenant settings:
      Admin portal → Tenant settings → Service principals

  3. Use the SP to bind the semantic model:

    • When using the SP for scheduled refresh, make sure it’s added as a Gateway Connection credential (if applicable).

If everything is configured correctly and the token issue persists, you might also want to:

  • Generate a new client secret

  • Clear and reconfigure the connection using updated credentials

If this post helps, then please appreciate giving a Kudos or accepting as a Solution to help the other members find it more quickly.
If I misunderstand your needs or you still have problems on it, please feel free to let us know. Thanks a lot!

 

Message 3 of 3
44 Views
deborshi_nag
Kudo Kingpin
Kudo Kingpin

Wednesday

Hi @JibinSebastian 

 

You would have to enter the Application (Client) ID of the Azure AD app registration you created (not the object ID).
This is exactly what “Service principal ID” refers to in the UI. 

So you should have:

  • Tenant ID = Directory ID from Azure AD
  • Service Principal ID = Application (Client) ID
  • Service Principal Key = the client secret under Certificates & secrets

Your tenant admin who has created the service pricipal SPN for you should have shared the client secret already. 

 

Hope this helps - please appreciate by leaving a Kudos or accepting as a Solution

Message 2 of 3
84 Views

Helpful resources

Announcements
December Fabric Update Carousel

Fabric Monthly Update - December 2025

Check out the December 2025 Fabric Holiday Recap!

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All