Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enhance your career with this limited time 50% discount on Fabric and Power BI exams. Ends August 31st. Request your voucher.

Reply
Anonymous
Not applicable

How to Enable SSO in Power BI report connected to another tenant Azure SQL DB?

‎06-25-2021 10:13 AM

Hello, 

 

I have a power bi report connected to the Azure SQL Database (direct query mode) in the capacity (Premium) workspace. 

I have successfully Embedded that report in a web app by using service principal (app owns scenario). 

 

Note: Azure SQL database and Power BI capacity workspace is in a different tenant 

Now, the requirement is to apply RLS on an embed report through SSO 

 

So, I have followed the below steps which are described in this link 

 

  • Registered an azure app (i.e. SQLAuthApp) in Azure SQL DB tenant with Azure SQL server API access (delegated permission) 
  • Enabled Azure AD Authentication for Azure SQL DB and applied user permission-based RLS rules 
  • Enabled the SSO checkbox in a Power BI report dataset connection. 

I am generating a user-specific access token through the azure app (SQLAuthApp) that can access the Azure SQL DB. 

then I am passing this access token as identityblob when I am requesting for Embed token. 

but it is throwing an error as per the below screen 

 

Priyank1_0-1624640691597.png

 

Can anyone guide me what steps i need to take to resolve this error? 

Below is the screen for a visual representation of available resources 

Priyank1_1-1624640691599.png

 

 

Labels:
Message 1 of 2
1,133 Views
0
1 REPLY 1
V-lianl-msft
Community Support
Community Support

‎06-27-2021 07:21 PM

Hi @Anonymous ,

 

The embed token could be generated with a valid SQL Access token as identity blob (i.e. not the user's AAD token as it is a token for the user's tenant only). Consider using on behalf authentication to get a valid SQL access token

https://docs.microsoft.com/en-us/graph/auth-v2-user 

 

Best Regards,
Liang
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Message 2 of 2
1,058 Views
0

Helpful resources

Announcements
August Power BI Update Carousel

Power BI Monthly Update - August 2025

Check out the August 2025 Power BI update to learn about new features.

August 2025 community update carousel

Fabric Community Update - August 2025

Find out what's new and trending in the Fabric community.

View All