I have custom portal where my all power bi embbed reports are linked and through AD group we are authenticating both the system based on AD groups. Here we are not capturing any user name all the mapping are done on Ad names? How we can implement the dynamic role level security ?
I'd like to suggest you take a look at the following link about use RLS in power bi embedded. (as document said, the username, role, dataset are required in this feature usage, they mapped based on embed token and corresponding Azure AD)
username (mandatory)– A string that can be used to help identify the user when applying RLS rules. Only a single user can be listed. Your username can be created withASCIIcharacters.
roles (mandatory)– A string containing the roles to select when applying Row Level Security rules. If passing more than one role, they should be passed as a string array.
dataset (mandatory)– The dataset that is applicable for the artifact you're embedding.
I'd like to suggest you take a look at the following link about use RLS in power bi embedded. (as document said, the username, role, dataset are required in this feature usage, they mapped based on embed token and corresponding Azure AD)
username (mandatory)– A string that can be used to help identify the user when applying RLS rules. Only a single user can be listed. Your username can be created withASCIIcharacters.
roles (mandatory)– A string containing the roles to select when applying Row Level Security rules. If passing more than one role, they should be passed as a string array.
dataset (mandatory)– The dataset that is applicable for the artifact you're embedding.
Regards, Xiaoxin Sheng
Helpful resources
Announcements
Power BI Monthly Update - April 2026
Check out the April 2026 Power BI update to learn about new features.
