Within Microsoft, an increasing number of Power BI reports contain highly sensitive information. While Security Groups and Access Policies effectively control who can access these reports, there is currently no mechanism to control how they are accessed.

Introducing a VPN requirement would add an important layer of protection by ensuring that only trusted, compliant devices within the Microsoft network can view sensitive content. This would reduce the risk of exposure from unmanaged or external networks and help maintain a secure data environment.

I recommend adding VPN‑based access controls to https://msit.powerbi.com/ so that sensitive reports can only be viewed through authenticated Microsoft network connections.