Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Calling all Data Engineers! Fabric Data Engineer (Exam DP-700) live sessions are back! Starting October 16th. Sign up.

Reply
Anonymous
Not applicable

How to Enable SSO in Power BI report connected to another tenant Azure SQL DB?

‎06-25-2021 10:13 AM

Hello, 

 

I have a power bi report connected to the Azure SQL Database (direct query mode) in the capacity (Premium) workspace. 

I have successfully Embedded that report in a web app by using service principal (app owns scenario). 

 

Note: Azure SQL database and Power BI capacity workspace is in a different tenant 

Now, the requirement is to apply RLS on an embed report through SSO 

 

So, I have followed the below steps which are described in this link 

 

  • Registered an azure app (i.e. SQLAuthApp) in Azure SQL DB tenant with Azure SQL server API access (delegated permission) 
  • Enabled Azure AD Authentication for Azure SQL DB and applied user permission-based RLS rules 
  • Enabled the SSO checkbox in a Power BI report dataset connection. 

I am generating a user-specific access token through the azure app (SQLAuthApp) that can access the Azure SQL DB. 

then I am passing this access token as identityblob when I am requesting for Embed token. 

but it is throwing an error as per the below screen 

 

Priyank1_0-1624640691597.png

 

Can anyone guide me what steps i need to take to resolve this error? 

Below is the screen for a visual representation of available resources 

Priyank1_1-1624640691599.png

 

 

Labels:
Message 1 of 2
1,220 Views
0
1 REPLY 1
V-lianl-msft
Community Support
Community Support

‎06-27-2021 07:21 PM

Hi @Anonymous ,

 

The embed token could be generated with a valid SQL Access token as identity blob (i.e. not the user's AAD token as it is a token for the user's tenant only). Consider using on behalf authentication to get a valid SQL access token

https://docs.microsoft.com/en-us/graph/auth-v2-user 

 

Best Regards,
Liang
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Message 2 of 2
1,145 Views
0

Helpful resources

Announcements
FabCon Global Hackathon Carousel

FabCon Global Hackathon

Join the Fabric FabCon Global Hackathon—running virtually through Nov 3. Open to all skill levels. $10,000 in prizes!

October Power BI Update Carousel

Power BI Monthly Update - October 2025

Check out the October 2025 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All