Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

We've captured the moments from FabCon & SQLCon that everyone is talking about, and we are bringing them to the community, live and on-demand. Starts on April 14th. Register now

Reply
Ritesh_Air
Post Patron
Post Patron

Row Level Security - Filter Region

‎07-20-2020 04:27 PM

Hi,

 

I have applied RLS to my model which works correctly. Users see their own data. But it gets little complicated when users are in different regions.

 

For e.g.

 

User Region Sales

100    A         500

100    B          400

200    C          200

200    D          150

200     E          100

 

I want to see User 100 only sees Region A

User 200 only sees Region C

 

How do I add this region piece into the mix?

 

I tried multiple things:

 

1. I created a simple table with "User column and corresponding Regions column and joined it to the security table on User but that doesn't work. Still see unwanted regions. Security table doesn't have Region otherwise I could have joined and tested.

 

2. I joined this simple table with Region table but still see data from another Region when user logs in.

 

Stumped...

 

Thanks,

Ritesh

 

 

 

 

Labels:
Message 1 of 6
4,395 Views
0
1 ACCEPTED SOLUTION
Icey
Community Support
Community Support

‎07-20-2020 10:48 PM

Hi @Ritesh_Air ,

 

Try this:

 

1. Tables:

tables.PNG

2. Create relationships.

relationship.gif

 

3. Manage roles.

For Sales table,

[Region] IN SELECTCOLUMNS (
    FILTER ( 'Region', RELATED ( 'User'[UserEmail] ) = USERPRINCIPALNAME () ),
    "Region", [Region]
)

 

For User table.

[UserEmail] = USERPRINCIPALNAME()

 

roles.gif

 

Then, test.

region.gif

 

BTW, .pbix file attached.

 

 

Best Regards,

Icey

 

If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

View solution in original post

Row Level Security - Filter Region.pbix
Message 6 of 6
4,319 Views
0
5 REPLIES 5
Icey
Community Support
Community Support

‎07-20-2020 10:48 PM

Hi @Ritesh_Air ,

 

Try this:

 

1. Tables:

tables.PNG

2. Create relationships.

relationship.gif

 

3. Manage roles.

For Sales table,

[Region] IN SELECTCOLUMNS (
    FILTER ( 'Region', RELATED ( 'User'[UserEmail] ) = USERPRINCIPALNAME () ),
    "Region", [Region]
)

 

For User table.

[UserEmail] = USERPRINCIPALNAME()

 

roles.gif

 

Then, test.

region.gif

 

BTW, .pbix file attached.

 

 

Best Regards,

Icey

 

If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Row Level Security - Filter Region.pbix
Message 6 of 6
4,320 Views
0
edhans
Community Champion
Community Champion

‎07-20-2020 04:39 PM

Did you create the Roles using DAX in the RLS settings of the desktop? See this article for a full walkthrough of the RLS settings and configuration. Part is done in the desktop, and part in the service after publishing.



Did I answer your question? Mark my post as a solution!
Did my answers help arrive at a solution? Give it a kudos by clicking the Thumbs Up!

DAX is for Analysis. Power Query is for Data Modeling


Proud to be a Super User!

MCSA: BI Reporting
Message 2 of 6
4,379 Views
0
Ritesh_Air
Post Patron
Post Patron
In response to edhans

‎07-20-2020 05:00 PM

Yes. I am doing all these steps. And using USERPRINICPALNAME():

 

Basically, I want users to see their own Region's numbers, even if they have access to other regions.

 

For e.g.: RSD 13559 could have access to sales number from Region C1, C2 and E1, but I only want him/her to see sales numbers of C2 because it's their region.

 

I created this file  below and joined region id with region from sales table but as security is on a Person (USERPRINCIPALNAME()), they still see sales numbers from C1 and E1.

 

Region with RSDs.PNG

 

Region numbers.PNG

 

Thanks,

Ritesh

 

Message 3 of 6
4,373 Views
0
edhans
Community Champion
Community Champion
In response to Ritesh_Air

‎07-20-2020 05:09 PM

Is it a gen 1 workspace? I know the user must not have edit rights or RLS doesn't work. I do now know if that "feature" carried over to Gen 2 workspaces that have more roles (viewer, member, contributor, etc.) but you could set them for Viewer and see if that changes anything.



Did I answer your question? Mark my post as a solution!
Did my answers help arrive at a solution? Give it a kudos by clicking the Thumbs Up!

DAX is for Analysis. Power Query is for Data Modeling


Proud to be a Super User!

MCSA: BI Reporting
Message 4 of 6
4,369 Views
0
Ritesh_Air
Post Patron
Post Patron
In response to edhans

‎07-20-2020 05:17 PM

@edhans 

 

Thanks, it is gen 2 and it works perfectly, I just don't know how to restrict users for seeing their own data if it's in different region. I think I need to filter it in the data model but not sure how?

 

Please let me know, if you need more information. Would be happy to provide.

 

Thanks,

Ritesh

Message 5 of 6
4,365 Views
0

Helpful resources

Announcements
New to Fabric survey Carousel

New to Fabric Survey

If you have recently started exploring Fabric, we'd love to hear how it's going. Your feedback can help with product improvements.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

Join our Fabric User Panel

Join our Fabric User Panel

Share feedback directly with Fabric product managers, participate in targeted research studies and influence the Fabric roadmap.

March Power BI Update Carousel

Power BI Community Update - March 2026

Check out the March 2026 Power BI update to learn about new features.

View All