Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

We've captured the moments from FabCon & SQLCon that everyone is talking about, and we are bringing them to the community, live and on-demand. Starts on April 14th. Register now

Reply
robertnorman
Advocate II
Advocate II

Conflicting RLS on Object

‎11-29-2023 06:38 AM

We have two roles: "Global VIP" and "Global".

VIP gets to see everything, while non-VIP (Global) are not to see one specific column (measure).

This is solved in our model in Tabular editor; on the specific column (in the fact table), the non-VIP (here called Global) has object level security set to "None", while the VIP one has default.

 

robertnorman_0-1701267948985.png

These RLS groups are populated by AD groups.

Problem arises if a person belongs to AD groups in both, that is eg a person is in group "sales personnel" which belongs to "Global", and group "managers" which is VIP. This leads to a conflict and person can't see anything based on this model.

 

(The AD groups are out of my control)

 

Any suggestions?

 

Preferrably I would like the more elevated role to take precedence.

Labels:
Message 1 of 4
558 Views
0
3 REPLIES 3
lbendlin
Super User
Super User

‎11-30-2023 07:01 PM 
Preferrably I would like the more elevated role to take precedence.

Define "elevated".  By default the more permissive rule overrides the more restrictive rule.

Message 2 of 4
518 Views
0
robertnorman
Advocate II
Advocate II
In response to lbendlin

‎12-01-2023 01:52 AM

In my case the "elevated" role would be the "Global VIP" role which has the object level security set to default, while the "Global" role has it set to None. 

Message 3 of 4
508 Views
0
lbendlin
Super User
Super User
In response to robertnorman

‎12-01-2023 03:56 AM

I have no experience with OLS, but it sounds like you either need to drop the requirement or create separate reports.

Message 4 of 4
502 Views
0

Helpful resources

Announcements
New to Fabric survey Carousel

New to Fabric Survey

If you have recently started exploring Fabric, we'd love to hear how it's going. Your feedback can help with product improvements.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

Join our Fabric User Panel

Join our Fabric User Panel

Share feedback directly with Fabric product managers, participate in targeted research studies and influence the Fabric roadmap.

March Power BI Update Carousel

Power BI Community Update - March 2026

Check out the March 2026 Power BI update to learn about new features.

View All