Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Compete to become Power BI Data Viz World Champion! First round ends August 18th. Get started.

Reply
mp390988
Helper V
Helper V

How to go about in implementing RLS

‎05-04-2025 11:09 AM

Need guidance in implementing row level security on the below Employees table:

 

EmployeeLocal DepartmentDepartmentManager ID
Johnny DeppData AnalyticsFinanceKris Moll
Brad PittData AnalyticsFinanceKris Moll
Matt DamonProduct ControlFinanceMatt Damon
James GreavesProduct ControlFinanceMatt Damon
Roopa NaragrachaMarket DataFinanceFilip Navros
Madhu SaiMarket DataFinanceFilip Navros
Jay PotLiquidity RiskFinanceChalie Ker
George ClooneyLiquidity RiskFinanceChalie Ker
Clive OwenFP&AFinanceClive Owen
Raju SinghFP&AFinanceClive Owen
Chris HelmsworthFP&AFinanceClive Owen
Kelly SmithData AnalyticsFinanceKris Moll

 

 

This is the data model:

 

mp390988_0-1746381858506.png

 

 

Employees who are not a manager, should only see their data. So for example, Johnny Depp is an employee and is not a manager, so he should only see their records.

 

Employees who are a manager should see their data as well the employees they manage. So for example, Clive Owen is an employee with manager status so he should see his records as well Raju Singh and Chris Helmsworth.

 

How do I do this?

Labels:
Message 1 of 6
417 Views
0
1 ACCEPTED SOLUTION
OktayPamuk80
Helper V
Helper V

‎05-04-2025 12:42 PM

Hi,

If you have only two layers it can be handled by following:

1) Join emails of Employee as "Employee Email" and Manager's as "Manager Email". In the Desktop follow this:

https://learn.microsoft.com/en-us/fabric/security/service-admin-row-level-security

2) Here you define 2 roles "Employee" and "Manager"

3) For employee role you set "Employee Email" == userprincipalname() 

4) For manager role you set "Manager Email" == userprincipalname() 

5) Follow RLS configuration in the Power BI Service after publishing

 

View solution in original post

Message 2 of 6
396 Views
0
5 REPLIES 5
Anonymous
Not applicable

‎05-08-2025 05:22 AM

Hi @mp390988,

 

we would like to follow up to see if the solution provided by the super user resolved your issue. Please let us know if you need any further assistance.
If our super user response resolved your issue, please mark it as "Accept as solution" and click "Yes" if you found it helpful.

 

Regards,
Vinay Pabbu

Message 4 of 6
298 Views
0
Anonymous
Not applicable
In response to Anonymous

‎05-12-2025 04:29 AM

Hi @mp390988,

 

we would like to follow up to see if the solution provided by the super user resolved your issue. Please let us know if you need any further assistance.
If our super user response resolved your issue, please mark it as "Accept as solution" and click "Yes" if you found it helpful.

 

Regards,
Vinay Pabbu

Message 5 of 6
270 Views
0
Anonymous
Not applicable
In response to Anonymous

‎05-16-2025 03:33 AM

Hi @mp390988,

 

we would like to follow up to see if the solution provided by the super user resolved your issue. Please let us know if you need any further assistance.
If our super user response resolved your issue, please mark it as "Accept as solution" and click "Yes" if you found it helpful.

 

Regards,
Vinay Pabbu

Message 6 of 6
241 Views
0
techies
Super User
Super User

‎05-06-2025 01:02 PM

Hi @mp390988 have you tried using PATH and PATHCONTAINS dax ?

Employees who are a manager should see their data as well the employees they manage.

PATHCONTAINS([Path], LOOKUPVALUE(data[Employee key], data[email], USERPRINCIPALNAME()))

 

 

― Power BI | Microsoft Fabric | PL-300 | DP-600 | Blog: medium.com/@cseprs_54978
Message 3 of 6
320 Views
0
OktayPamuk80
Helper V
Helper V

‎05-04-2025 12:42 PM

Hi,

If you have only two layers it can be handled by following:

1) Join emails of Employee as "Employee Email" and Manager's as "Manager Email". In the Desktop follow this:

https://learn.microsoft.com/en-us/fabric/security/service-admin-row-level-security

2) Here you define 2 roles "Employee" and "Manager"

3) For employee role you set "Employee Email" == userprincipalname() 

4) For manager role you set "Manager Email" == userprincipalname() 

5) Follow RLS configuration in the Power BI Service after publishing

 

Message 2 of 6
397 Views
0

Helpful resources

Announcements
July 2025 community update carousel

Fabric Community Update - July 2025

Find out what's new and trending in the Fabric community.

July PBI25 Carousel

Power BI Monthly Update - July 2025

Check out the July 2025 Power BI update to learn about new features.

View All