Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Power BI is turning 10! Let’s celebrate together with dataviz contests, interactive sessions, and giveaways. Register now.

Reply
Anonymous
Not applicable

PowerBI Admin Rest API - Azure app registration - dont know how to connect from Postman

‎10-06-2021 01:23 AM

We are trying to build a database with PowerBI auditing information.

In our case, the ideal solution is, that we want to load  data from the REST APIs towards AWS. (I know.. don't ask... 🙂

 

We have setup an Azure AD App registration for this. Inspired by several youtube videos and this blog post:
How to Call the Power BI REST API from Postman - Carl de Souza

For this app, we have requested our office tenant admin to approve Tenant.Read.All privileges.
That is probably a little different than what Carl described. I dont want to use the "delegated permissions" since I dont want to logon with my corporate ID, but I want to login with a clientID and secret coming from our AWS environment. 

vandenhende_0-1633507649003.png

vandenhende_1-1633507871167.png

 

My issue is now, that I am trying to connect from Postman, but I am failing.
First I am trying to do a Post to get a bearer token. This seems succesful, although I am wondering: should I also see a "scope" mentioned in the result? I have seen it with other screenshots on the web.

 

vandenhende_0-1633512318480.png

 

 

Then, while trying to do a simple get, using this bearer token, I am getting a "401 unauthorized". 

vandenhende_3-1633508369856.png

 

Can someone please suggest what I am doing wrong? Any suggestion would be highly appreciated!

 

Update:

meanwhile I came across this article about Service Principals
Enable service principal authentication for read-only admin APIs - Power BI | Microsoft Docs

Would that be the right way to go? I tried some of the steps, and went to a different error message:

vandenhende_0-1633528680408.png

 



 

 

Labels:
Message 1 of 4
4,190 Views
1 ACCEPTED SOLUTION
alex_chiraples
Frequent Visitor

‎10-07-2021 02:57 AM

@Anonymous , the link is the right way to do it. You need to:

1. Create the security group

2. Add the service principal in a security group.

3. Enable the  "Allow service principals to use read only ..." feature

4. Add the security group in "Allow service principals to use read only ..." 

 

Re-test after 10-15 minutes (AAD groups and member propagation in all services) 

View solution in original post

Message 3 of 4
4,107 Views
0
3 REPLIES 3
alex_chiraples
Frequent Visitor

‎10-07-2021 02:57 AM

@Anonymous , the link is the right way to do it. You need to:

1. Create the security group

2. Add the service principal in a security group.

3. Enable the  "Allow service principals to use read only ..." feature

4. Add the security group in "Allow service principals to use read only ..." 

 

Re-test after 10-15 minutes (AAD groups and member propagation in all services) 

Message 3 of 4
4,108 Views
0
Anonymous
Not applicable
In response to alex_chiraples

‎10-07-2021 02:59 AM

Indeed! I just figured out that this works!

It took quite some time to learn that this was the right approach. 

 

Thanks for your support!

 

Message 4 of 4
4,097 Views
0
JoeBlackBlood
Frequent Visitor

‎10-07-2021 01:42 AM

I maybe won't help to much with this but, for the app that we have, we need to invite the user as a guest to the tenant and add him to the security group on the Azure ad, then that group need to be part of the app access. When you create any app on Azure, you also have enterprise applications and under your app, you need to add that group otherwise, they won't be able to access it.

Message 2 of 4
4,121 Views

Helpful resources

Announcements
June 2025 Power BI Update Carousel

Power BI Monthly Update - June 2025

Check out the June 2025 Power BI update to learn about new features.

June 2025 community update carousel

Fabric Community Update - June 2025

Find out what's new and trending in the Fabric community.

View All
Top Solution Authors
View All