Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enhance your career with this limited time 50% discount on Fabric and Power BI exams. Ends August 31st. Request your voucher.

Reply
xli629b
Helper II
Helper II

Adding Azure B2B Direct Connect users to workspaces

‎04-04-2022 03:55 PM

I am trying to add an external service principal (from another tenant) that is enabled to access our tenancy with B2B Direct Connect to my workspace.

After enabling inbound and outbound access for this service principal in External Identities > B2B direct connect, I was able to authenticate into my tenancy with the external service principal to access the API.

However, now I need to give the external service principal access to a workspace.

Adding it manually: In the Access tab of my workspace, I can't find the external service principal in the autocomplete.

Adding it via the API: I get the following when I try to add the service principal's object ID.
https://api.powerbi.com/v1.0/myorg/groups/<groupId>/users

{
  groupUserAccessRight: "Admin",
  identifier: "<object ID for service principal>",
  principalType: "App"
}

Response:

{
  "error": {
    "code": "InvalidRequest",
    "message": "Failed to get service principal details from AAD."
  }
}

 
Is it possible to use the Power BI REST API with external users with B2B Direct Connect, or is there no way for Power BI to work with users that are in another tenant's directory altogether (rather than guest users).

Labels:
Message 1 of 4
1,123 Views
0
3 REPLIES 3
Anonymous
Not applicable

‎04-06-2022 07:03 PM

HI @xli629b,

I think you need to create a security group with common users and b2b users at first, then you can add the service principal to that security group.
After these steps, you can assign the above group as a member of the workspace that stores embedded contents to share the premissions.

Embed Power BI content in an embedded analytics application with service principal and an applicatio...

Regards,

Xiaoxin Sheng

Message 2 of 4
1,040 Views
0
xli629b
Helper II
Helper II
In response to Anonymous

‎04-07-2022 07:55 AM

I created a security group, but when I try to add the external B2B Direct Connect service principal to the group, it cannot be found either by object ID or by name.

xli629b_0-1649343194820.png

 

Message 3 of 4
1,025 Views
0
Anonymous
Not applicable
In response to xli629b

‎04-18-2022 11:52 PM

HI @xli629b,

I'm not so sure if this scenario is related to the limitation of b2b feature usages, perhaps you can contact azure support to confirm this.
reference link:

Azure Support Options | Microsoft Azure

Distribute content to external guest users with Azure AD B2B - Power BI | Microsoft Docs

Regards,

Xiaoxin Sheng

Message 4 of 4
941 Views
0

Helpful resources

Announcements
July 2025 community update carousel

Fabric Community Update - July 2025

Find out what's new and trending in the Fabric community.

July PBI25 Carousel

Power BI Monthly Update - July 2025

Check out the July 2025 Power BI update to learn about new features.

Join our Fabric User Panel

Join our Fabric User Panel

This is your chance to engage directly with the engineering team behind Fabric and Power BI. Share your experiences and shape the future.

View All