Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enhance your career with this limited time 50% discount on Fabric and Power BI exams. Ends August 31st. Request your voucher.

Reply
mathsab
New Member

REST API and Object Level Security

‎07-10-2025 12:55 AM

Hello,

I have a problem concerning the Power BI REST API and OLS security.

I'm using the REST API with a Service Principal, in particular the “GetScanResult” call I get metadata that I exploit to make documentation.

In particular, I obtain dataset metadata with the list of tables and their description, the list of columns and their description, and the list of measures and their description.

This works perfectly except for one dataset, where an OLS security is applied. This completely blocks the extraction of the metadata mentioned.

I've tried several solutions, such as integrating the Service Principal into a Workspace Administrator role, or integrating the Service Principal into a "full access" OLS security role, but the metadata still won't come up.

Have you encountered this before? Does anyone have a solution?

Thanks for your help!

Labels:
Message 1 of 2
252 Views
0
1 ACCEPTED SOLUTION
v-achippa
Community Support
Community Support

‎07-10-2025 03:35 AM

Hi @mathsab,

 

Thank you for reaching out to Microsoft Fabric Community.

 

Power BI enforces OLS at the engine level, when metadata is requested through APIs, OLS hides metadata from all users including Service Principals. So even there is admin or scan level access OLS still applies. Currently there is no way to skip OLS via the API, even with full workspace or dataset level permissions. At this time this is a known limitation with the security and data protection model, so please follow below steps:

  • Temporarily disable OLS during the metadata scan, if the security policy allows.
  • Create a duplicate of the dataset without OLS for documentation purposes.

 

 

If this post helps, then please consider Accepting as solution to help the other members find it more quickly, don't forget to give a "Kudos" – I’d truly appreciate it! 

 

Thanks and regards,

Anjan Kumar Chippa

View solution in original post

Message 2 of 2
223 Views
0
1 REPLY 1
v-achippa
Community Support
Community Support

‎07-10-2025 03:35 AM

Hi @mathsab,

 

Thank you for reaching out to Microsoft Fabric Community.

 

Power BI enforces OLS at the engine level, when metadata is requested through APIs, OLS hides metadata from all users including Service Principals. So even there is admin or scan level access OLS still applies. Currently there is no way to skip OLS via the API, even with full workspace or dataset level permissions. At this time this is a known limitation with the security and data protection model, so please follow below steps:

  • Temporarily disable OLS during the metadata scan, if the security policy allows.
  • Create a duplicate of the dataset without OLS for documentation purposes.

 

 

If this post helps, then please consider Accepting as solution to help the other members find it more quickly, don't forget to give a "Kudos" – I’d truly appreciate it! 

 

Thanks and regards,

Anjan Kumar Chippa

Message 2 of 2
224 Views
0

Helpful resources

Announcements
July 2025 community update carousel

Fabric Community Update - July 2025

Find out what's new and trending in the Fabric community.

July PBI25 Carousel

Power BI Monthly Update - July 2025

Check out the July 2025 Power BI update to learn about new features.

View All