Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Earn a 50% discount on the DP-600 certification exam by completing the Fabric 30 Days to Learn It challenge.

Reply
verianalizi
Frequent Visitor

Azure AD Security Group In Lakehouse SQL analytics endpoint

‎01-08-2024 05:12 AM

Hello,

Can I access AD Security group in Lakehouse SQL analytics endpoint? I tried IS_MEMBER ('AnyGroupName')  function. But it didn't work. It returned "NULL". Do you have any idea? My aim is to create RLS security in SQL with Security Groups.

 

Below link says for IS_MEMBER function:  "... current user is a member of a database role or a Windows domain group."

 

https://learn.microsoft.com/en-us/sql/t-sql/functions/is-member-transact-sql?view=sql-server-ver16

 

Thanks in advance.

Labels:
Message 1 of 7
378 Views
0
6 REPLIES 6
v-gchenna-msft
Community Support
Community Support

‎01-11-2024 10:53 PM

Hi @verianalizi ,

Thanks for using Fabric Community.

RLS security in SQL Endpoint - Fabric with Security Groups can be implemented.
For detail process please check this link for reference.

Hope this is helpful. Please let me know incase of further queries.

Message 2 of 7
314 Views
0
verianalizi
Frequent Visitor
In response to v-gchenna-msft

‎01-11-2024 11:14 PM

Hello thank you for your response but I can't access the link. "about:blank#blocked"

Message 3 of 7
308 Views
0
v-gchenna-msft
Community Support
Community Support
In response to verianalizi

‎01-11-2024 11:33 PM

Hi @verianalizi ,

Please refer this link - Row-level security in Fabric data warehousing - Microsoft Fabric | Microsoft Learn

Message 4 of 7
301 Views
0
v-gchenna-msft
Community Support
Community Support
In response to v-gchenna-msft

‎01-17-2024 01:56 AM

Hi @verianalizi ,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet .
In case if you have any resolution please do share that same with the community as it can be helpful to others .
Otherwise, will respond back with the more details and we will try to help .

Message 7 of 7
216 Views
0
v-gchenna-msft
Community Support
Community Support
In response to v-gchenna-msft

‎01-16-2024 02:39 AM

Hi @verianalizi ,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet .
In case if you have any resolution please do share that same with the community as it can be helpful to others .
Otherwise, will respond back with the more details and we will try to help .

Message 6 of 7
231 Views
0
fabricator1
Advocate II
Advocate II
In response to v-gchenna-msft

‎01-12-2024 01:18 PM

Hi @v-gchenna-msft,

 

The approach shown in the link, is using USER_NAME() for single user only.

 

 

-- Creating a function for the SalesRep evaluation
CREATE FUNCTION Security.tvf_securitypredicate(@SalesRep AS nvarchar(50))
RETURNS TABLE
WITH SCHEMABINDING
AS
RETURN SELECT 1 AS tvf_securitypredicate_result
WHERE @SalesRep = USER_NAME() OR USER_NAME() = 'manager@contoso.com';
GO

 


How can we do it for Entra ID security groups?

I have tried to do that, but I wasn't succesful. Can you provide some guidance. Please see my post: SQL Analytics Endpoint - RLS for Security Groups - Microsoft Fabric Community

Message 5 of 7
285 Views
0

Helpful resources

Announcements
Expanding the Synapse Forums

New forum boards available in Synapse

Ask questions in Data Engineering, Data Science, Data Warehouse and General Discussion.

LearnSurvey

Fabric certifications survey

Certification feedback opportunity for the community.

April Fabric Community Update

Fabric Community Update - April 2024

Find out what's new and trending in the Fabric Community.

View All