Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now! Learn more

Reply
shanu_123
Frequent Visitor

Power BI Embedded Authentication through Azure AD

‎12-07-2017 10:14 PM

I have implemeted Power BI Embedded sample "App-Own-Data" available at Power BI-Microsoft Docs, At the time of authenticate only that users are allowed that are added in workspace created in Power BI service, I want that all member Azure AD should able to authenticate and able to see reports based on roles, how can i authencate through azure AD in Power BI Embedded Application? As well roles are here hardcoded can we make them dynamic in code? Below is code for HomeController.cs -

 generateTokenRequestParameters = new GenerateTokenRequest("View", null, identities: new List<EffectiveIdentity> { new EffectiveIdentity(username: "username", roles: new List<string> { username == "mohit.gupta@systematixindia.com" ? "Manager" : "Manager1" }, datasets: new List<string> { "bd725bc3-09b4-4c21-84b4-727d84a3f131" }) });

Labels:
Message 1 of 2
3,568 Views
0
1 ACCEPTED SOLUTION
v-ljerr-msft
Microsoft Employee
Microsoft Employee

‎12-11-2017 12:26 AM

Hi @shanu_123,

 

If you are embedding for non-Power BI users (app owns data), which is typically an ISV scenario, then you should be able to follow this article to implement RLS. You will need to configure the embed token to account for the user and role.

 As well roles are here hardcoded can we make them dynamic in code? 

Based on my understanding, if you could store all the app user info with the corresponding user name, roles, and datasets in your database or somewhere else. Then you should be able to get the required info (by retrieving the database) to generate the TokenRequest for the current app user dynamically. Smiley Happy

 

Regards

View solution in original post

Message 2 of 2
4,487 Views
1 REPLY 1
v-ljerr-msft
Microsoft Employee
Microsoft Employee

‎12-11-2017 12:26 AM

Hi @shanu_123,

 

If you are embedding for non-Power BI users (app owns data), which is typically an ISV scenario, then you should be able to follow this article to implement RLS. You will need to configure the embed token to account for the user and role.

 As well roles are here hardcoded can we make them dynamic in code? 

Based on my understanding, if you could store all the app user info with the corresponding user name, roles, and datasets in your database or somewhere else. Then you should be able to get the required info (by retrieving the database) to generate the TokenRequest for the current app user dynamically. Smiley Happy

 

Regards

Message 2 of 2
4,488 Views

Helpful resources

Announcements
Power BI DataViz World Championships

Power BI Dataviz World Championships

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now!

December 2025 Power BI Update Carousel

Power BI Monthly Update - December 2025

Check out the December 2025 Power BI Holiday Recap!

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All