Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now! Learn more

Reply
robertnorman
Advocate II
Advocate II

Conflicting RLS on Object

‎11-29-2023 06:38 AM

We have two roles: "Global VIP" and "Global".

VIP gets to see everything, while non-VIP (Global) are not to see one specific column (measure).

This is solved in our model in Tabular editor; on the specific column (in the fact table), the non-VIP (here called Global) has object level security set to "None", while the VIP one has default.

 

robertnorman_0-1701267948985.png

These RLS groups are populated by AD groups.

Problem arises if a person belongs to AD groups in both, that is eg a person is in group "sales personnel" which belongs to "Global", and group "managers" which is VIP. This leads to a conflict and person can't see anything based on this model.

 

(The AD groups are out of my control)

 

Any suggestions?

 

Preferrably I would like the more elevated role to take precedence.

Labels:
Message 1 of 4
504 Views
0
3 REPLIES 3
lbendlin
Super User
Super User

‎11-30-2023 07:01 PM 
Preferrably I would like the more elevated role to take precedence.

Define "elevated".  By default the more permissive rule overrides the more restrictive rule.

Message 2 of 4
464 Views
0
robertnorman
Advocate II
Advocate II
In response to lbendlin

‎12-01-2023 01:52 AM

In my case the "elevated" role would be the "Global VIP" role which has the object level security set to default, while the "Global" role has it set to None. 

Message 3 of 4
454 Views
0
lbendlin
Super User
Super User
In response to robertnorman

‎12-01-2023 03:56 AM

I have no experience with OLS, but it sounds like you either need to drop the requirement or create separate reports.

Message 4 of 4
448 Views
0

Helpful resources

Announcements
Power BI DataViz World Championships

Power BI Dataviz World Championships

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now!

December 2025 Power BI Update Carousel

Power BI Monthly Update - December 2025

Check out the December 2025 Power BI Holiday Recap!

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All