Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Don't miss out! 2025 Microsoft Fabric Community Conference, March 31 - April 2, Las Vegas, Nevada. Use code MSCUST for a $150 discount. Prices go up February 11th. Register now.

Reply
verianalizi
Frequent Visitor

Azure AD Security Group In Lakehouse SQL analytics endpoint

‎01-08-2024 05:12 AM

Hello,

Can I access AD Security group in Lakehouse SQL analytics endpoint? I tried IS_MEMBER ('AnyGroupName')  function. But it didn't work. It returned "NULL". Do you have any idea? My aim is to create RLS security in SQL with Security Groups.

 

Below link says for IS_MEMBER function:  "... current user is a member of a database role or a Windows domain group."

 

https://learn.microsoft.com/en-us/sql/t-sql/functions/is-member-transact-sql?view=sql-server-ver16

 

Thanks in advance.

Labels:
Message 1 of 7
762 Views
0
6 REPLIES 6
Anonymous
Not applicable

‎01-11-2024 10:53 PM

Hi @verianalizi ,

Thanks for using Fabric Community.

RLS security in SQL Endpoint - Fabric with Security Groups can be implemented.
For detail process please check this link for reference.

Hope this is helpful. Please let me know incase of further queries.

Message 2 of 7
698 Views
0
verianalizi
Frequent Visitor
In response to Anonymous

‎01-11-2024 11:14 PM

Hello thank you for your response but I can't access the link. "about:blank#blocked"

Message 3 of 7
692 Views
0
Anonymous
Not applicable
In response to verianalizi

‎01-11-2024 11:33 PM

Hi @verianalizi ,

Please refer this link - Row-level security in Fabric data warehousing - Microsoft Fabric | Microsoft Learn

Message 4 of 7
685 Views
0
Anonymous
Not applicable
In response to Anonymous

‎01-17-2024 01:56 AM

Hi @verianalizi ,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet .
In case if you have any resolution please do share that same with the community as it can be helpful to others .
Otherwise, will respond back with the more details and we will try to help .

Message 7 of 7
600 Views
0
Anonymous
Not applicable
In response to Anonymous

‎01-16-2024 02:39 AM

Hi @verianalizi ,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet .
In case if you have any resolution please do share that same with the community as it can be helpful to others .
Otherwise, will respond back with the more details and we will try to help .

Message 6 of 7
615 Views
0
fabricator1
Advocate II
Advocate II
In response to Anonymous

‎01-12-2024 01:18 PM

Hi @Anonymous,

 

The approach shown in the link, is using USER_NAME() for single user only.

 

 

-- Creating a function for the SalesRep evaluation
CREATE FUNCTION Security.tvf_securitypredicate(@SalesRep AS nvarchar(50))
RETURNS TABLE
WITH SCHEMABINDING
AS
RETURN SELECT 1 AS tvf_securitypredicate_result
WHERE @SalesRep = USER_NAME() OR USER_NAME() = 'manager@contoso.com';
GO

 


How can we do it for Entra ID security groups?

I have tried to do that, but I wasn't succesful. Can you provide some guidance. Please see my post: SQL Analytics Endpoint - RLS for Security Groups - Microsoft Fabric Community

Message 5 of 7
669 Views
0

Helpful resources

Announcements
Las Vegas 2025

Join us at the Microsoft Fabric Community Conference

March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount!

ArunFabCon

Microsoft Fabric Community Conference 2025

Arun Ulag shares exciting details about the Microsoft Fabric Conference 2025, which will be held in Las Vegas, NV.

December 2024

A Year in Review - December 2024

Find out what content was popular in the Fabric community during 2024.

View All