Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Learn from the best! Meet the four finalists headed to the FINALS of the Power BI Dataviz World Championships! Register now

Reply
OneWithQuestion
Post Prodigy
Post Prodigy

Object Level Security: Possible to make dynamic like RLS instead of manually adding users to Roles?

‎03-11-2021 01:57 PM

Is it possible to make Object Level Security dynamic so that instead of having to place each user into a role manually, it can use DAX to determine if a user should or should not see an object OR if the user should or should not be placed into a role?  Like how RLS is handled dynamically via DAX.

It appears that the only way to deny (or grant) access to columns or objects for a user is to set the permissions in the role and then manually add the user (or a group the user is in) to that role.

Meaning that if the user's permissions to view objects changes I would have to go back and update each model's role assignment or AD group.




Labels:
Message 1 of 4
3,077 Views
0
2 ACCEPTED SOLUTIONS
v-easonf-msft
Community Support
Community Support

‎03-14-2021 08:05 PM

Hi, @OneWithQuestion 

As of now , powerbi doesn't support  dynamic object level Security.

Not to be confused with row-level security, OLS does not simply hide rows of data from end users. Instead, OLS hides the entire table or column\measure.

 

Dynamic Rls must need a user table which contains a field like "email-work" .Then you can use Table[column =]UserPrincipalName() to  filter related tables' row data  ( manage roles ->roles->table-> table filter expression)

22.png

The essence is that dax obtains the currently logged-in user to filter the table row data.

 

Dax can be used to filter tables' row data in  each table filter expression but it cannot be used to filter the tables\Table columns and measures in the model.  So it is hard to make Object Level Security dynamic data filtered by  current email address )

 

Best Regards,
Community Support Team _ Eason
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

 

 

 

 

 

View solution in original post

Message 2 of 4
3,002 Views
0
OneWithQuestion
Post Prodigy
Post Prodigy

‎03-24-2021 06:48 AM

Microsoft says that at present there are no plans to make Object Level Security dynamic.

View solution in original post

Message 4 of 4
2,973 Views
0
3 REPLIES 3
OneWithQuestion
Post Prodigy
Post Prodigy

‎03-24-2021 06:48 AM

Microsoft says that at present there are no plans to make Object Level Security dynamic.

Message 4 of 4
2,974 Views
0
v-easonf-msft
Community Support
Community Support

‎03-23-2021 07:35 PM

Hi, @OneWithQuestion 

Could you please tell me whether your problem has been solved?

For now, there is no content of description in the thread. If you still need help, please share more details to us.

Best Regards,
Community Support Team _ Eason

Message 3 of 4
2,987 Views
0
v-easonf-msft
Community Support
Community Support

‎03-14-2021 08:05 PM

Hi, @OneWithQuestion 

As of now , powerbi doesn't support  dynamic object level Security.

Not to be confused with row-level security, OLS does not simply hide rows of data from end users. Instead, OLS hides the entire table or column\measure.

 

Dynamic Rls must need a user table which contains a field like "email-work" .Then you can use Table[column =]UserPrincipalName() to  filter related tables' row data  ( manage roles ->roles->table-> table filter expression)

22.png

The essence is that dax obtains the currently logged-in user to filter the table row data.

 

Dax can be used to filter tables' row data in  each table filter expression but it cannot be used to filter the tables\Table columns and measures in the model.  So it is hard to make Object Level Security dynamic data filtered by  current email address )

 

Best Regards,
Community Support Team _ Eason
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

 

 

 

 

 

Message 2 of 4
3,003 Views
0

Helpful resources

Announcements
Join our Fabric User Panel

Join our Fabric User Panel

Share feedback directly with Fabric product managers, participate in targeted research studies and influence the Fabric roadmap.

February Power BI Update Carousel

Power BI Monthly Update - February 2026

Check out the February 2026 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All