Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Try your skills in the Power BI Dataviz World Championship! Round one ends June 26. Join now

Reply
luigisax89
Regular Visitor

API to grant report acess

‎02-18-2026 08:12 AM

Hi everyone,

I’m looking for the best solution to my problem. We have Power BI Service where we upload reports and share them with colleagues via direct access. I want to automate access management through APIs. So, if a user changes departments and should no longer see a report, they are automatically removed. Conversely, if they are added to a department, they should gain access to the report. What are the best practices? Are there APIs to add or remove users with direct access?

 

Thx

Labels:
Message 1 of 3
4,828 Views
1 ACCEPTED SOLUTION
cengizhanarslan
Super User
Super User

‎02-18-2026 11:08 AM

  1. Create Entra ID groups per department (or per access bundle), e.g. PBI_Sales_Readers, PBI_Finance_Readers.

  2. Grant the group access to the report.

  3. Your HR/IT system updates group membership when department changes.

Result: users automatically gain/lose access without touching Power BI items.

_________________________________________________________
If this helped, ✓ Mark as Solution | Kudos appreciated
Connect on LinkedIn | Follow on Medium
AI-assisted tools are used solely for wording support. All conclusions are independently reviewed.

View solution in original post

Message 2 of 3
4,790 Views
2 REPLIES 2
v-pnaroju-msft
Community Support
Community Support

‎02-19-2026 10:38 PM

Thankyou, @cengizhanarslan for your response.

Hi luigisax89,

We appreciate your inquiry submitted to the Microsoft Fabric Community Forum.

As suggested by @cengizhanarslan , the best approach is to create department based Entra ID security groups and grant those groups access at the workspace level so that all reports inherit the security settings.
Based on our understanding, Power BI REST APIs allow adding or removing users or groups at the workspace level using Groups – Add/Delete User.

Please refer to the links provided below:
Groups - Add Group User - REST API (Power BI Power BI REST APIs) | Microsoft Learn
Groups - Delete User In Group - REST API (Power BI Power BI REST APIs) | Microsoft Learn
Groups - Update Group User - REST API (Power BI Power BI REST APIs) | Microsoft Learn
Workspaces in Power BI - Power BI | Microsoft Learn

We hope the information furnished helps to resolve the issue. Should you have any further queries, please feel free to contact the Microsoft Fabric community.
Thank you.

Message 3 of 3
4,726 Views
0
cengizhanarslan
Super User
Super User

‎02-18-2026 11:08 AM

  1. Create Entra ID groups per department (or per access bundle), e.g. PBI_Sales_Readers, PBI_Finance_Readers.

  2. Grant the group access to the report.

  3. Your HR/IT system updates group membership when department changes.

Result: users automatically gain/lose access without touching Power BI items.

_________________________________________________________
If this helped, ✓ Mark as Solution | Kudos appreciated
Connect on LinkedIn | Follow on Medium
AI-assisted tools are used solely for wording support. All conclusions are independently reviewed.
Message 2 of 3
4,791 Views

Helpful resources

Announcements
Fabric Data Days is here Carousel

Fabric Data Days 2026

Don't miss out on Data Days, June 15 through August 7. Learn Fabric, Power BI, SQL, AI and more.

May Power BI Update Carousel

Power BI Monthly Update - May 2026

Check out the May 2026 Power BI update to learn about new features.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

View All
Top Kudoed Authors
View All