dynamic security does not get applied unless the t...

Anonymous · ‎01-21-2022

I have the next model in SSAS cube:

(Clients connect to the fact table too)

As seen, a filter in User Access will propagate all the way to the fact…

If I have a dynamic role security with some filter on DAX in User access, will it be applied even if I don’t put/select User access table in the frontend in Power BI??

Per my test, the filter gets applied only if I use a filter from that table, if I don’t use that table the dynamic security does not get applied, why is this??

v-luwang-msft · ‎01-26-2022

Hi @Anonymous ,

When I used to test dynamic RLS, I found that the following factors would cause RLS to not work,please check it:

In order for this to work, you will need to apply the tick next to “Apply security filter in both directions”

NOTE: If this is not enabled or ticked the Dynamic RLS will not work correctly.

So once done it will now look like the following below (“Apply security filter in both directions” must be clicked):

Best Regards

Lucien

lbendlin · ‎01-23-2022

It will be applied when the user authenticates against the SSAS cube.

It is rather unfortunate that your user access table is on the Many side of the relationship. Any way to avoid that?

dynamic security does not get applied unless the table is as filter in the .pbix?

Helpful resources

Power BI Monthly Update - August 2025

Fabric Community Update - August 2025

How to Get Your Question Answered Quickly

Join us at FabCon Vienna from September 15-18, 2025

dynamic security does not get applied unless the table is as filter in the .pbix?

Helpful resources

Power BI Monthly Update - August 2025

Fabric Community Update - August 2025

How to Get Your Question Answered Quickly