Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Be one of the first to start using Fabric Databases. View on-demand sessions with database experts and the Microsoft product team to learn just how easy it is to get started. Watch now

Reply
sekic
Helper I
Helper I

Power bi direct query with windows authentication, how to setup

‎05-02-2017 02:06 AM

I succesfully setup sql 2016 direct query in power bi desktop, it's run fine.

But when published, it still use my creditenials to connect, not from another user which is connected to published file.

How to "get" current windows user to connect to sql?

Because pbix use is based on bunch of views, which all have build-in control to connected user ID, so each user must "use" own user id from windows.

 

 

Labels:
Message 1 of 9
2,962 Views
0
8 REPLIES 8
v-qiuyu-msft
Community Support
Community Support

‎05-02-2017 08:11 PM

Hi @sekic,

 

From your description, it seems that you want to let each user access the report can only see his own data, right?

 

In your scenario, you can utilize the RLS feature. Assume there is a column contains user's User Principal Name (UPN), you can create a RLS role in Power BI desktop user's [email] = username( ). After publish the report to service, add members under this role. For more information, see: Row-level security (RLS) with Power BI.

 

By the way, as the .pbix file get data from the SQL server database in DirectQuery mode, after publish to the Power BI service, it requires the data gateway to build connection. See: Manage your data source - SQL Server.

 

Best Regards,
Qiuyun Yu

Community Support Team _ Qiuyun Yu
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Message 2 of 9
2,989 Views
0
sekic
Helper I
Helper I
In response to v-qiuyu-msft

‎05-03-2017 02:07 AM

Thanks, this is fine and usable.

But can I do one more step forward; to get win user/pass thru DAX or env.variables, and connect to sql with this?

 

Message 3 of 9
2,939 Views
0
v-qiuyu-msft
Community Support
Community Support
In response to sekic

‎05-03-2017 02:19 AM

Hi @sekic,

 

Sure. We can get data from SQL Server data source, and define RLS role use USERNAME() function mentioned above to limit each user access the report can only see his own data.

 

Best Regards,
Qiuyun Yu

Community Support Team _ Qiuyun Yu
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Message 4 of 9
2,937 Views
0
sekic
Helper I
Helper I
In response to v-qiuyu-msft

‎06-13-2017 08:05 AM

Ok, direct query use live connection to sql database, and each action (click, filter, etc...) on dasboard is visible in SQL profiler as query on database, but I can't use Trusted_Connection=true in connection string or anything similar?

 

I have zilions of views on MS SQL, each of them filter records using current database user information (Microsoft Dynamics CRM filtered views), but you say that I must make copies of all of them using crossjoin with sysusers table or similar, and then separate records with RLS rule on Power BI side? 

And that I must rewrite all CRM security code in filtered views to surpass Power BI RLS?

 

And all three products (Dynamics CRM and Power BI and SQL server) are Microsoft's but you can't solve using windows authentification in Power BI?

 

 

Message 5 of 9
2,873 Views
0
Anonymous
Not applicable
In response to sekic

‎04-17-2018 07:46 AM

Any news with updated version on this old subejct ?

Message 6 of 9
2,483 Views
0
sekic
Helper I
Helper I
In response to Anonymous

‎05-07-2018 02:35 AM

None. Main answer is that Power bi only can "read" data, and can't send any info to DB, even in live query. 

Which is, in case of Microsoft CRM, useless, because CRM have so many "Filtered" views, and development is, if some still not give up from Power BI, unnecessary slow, because I must rewrite all to the last view to 'duplicate' authorisation system form one Microsoft product to another Microsoft product  Man Frustrated Man Mad Man Frustrated

 

Message 7 of 9
2,445 Views
0
Anonymous
Not applicable
In response to sekic

‎05-07-2018 04:53 AM

Hi Sekic,

 

When you get data from CRM, did you try using API and not SQL DB ?

But in API mode, you will be in import and not Direct Query. Then, in import mode, it will be the same problem, in deploy mode, there is only one unique acount for refresh :(:(

 

Message 8 of 9
2,439 Views
0
sekic
Helper I
Helper I
In response to Anonymous

‎05-07-2018 04:56 AM

Read live data from sql CRM database is request, so API is not applicable. 

Message 9 of 9
2,436 Views

Helpful resources

Announcements
Las Vegas 2025

Join us at the Microsoft Fabric Community Conference

March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount!

Dec Fabric Community Survey

We want your feedback!

Your insights matter. That’s why we created a quick survey to learn about your experience finding answers to technical questions.

ArunFabCon

Microsoft Fabric Community Conference 2025

Arun Ulag shares exciting details about the Microsoft Fabric Conference 2025, which will be held in Las Vegas, NV.

December 2024

A Year in Review - December 2024

Find out what content was popular in the Fabric community during 2024.

View All
Top Solution Authors
View All