Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The FabCon + SQLCon recap series starts April 14th at 8am Pacific. If you’re tracking where AI is going inside Fabric, this first session is a can't miss. Register now

Reply
vedran
Frequent Visitor

Row Level Security in Power BI multidimensional SSAS

‎01-25-2017 03:11 PM

Hello guys,

 

I cannot find any confirmation that is possible to implement Power BI RLS with multidimensional SSAS (on-prem).

Everything that is decribed here https://powerbi.microsoft.com/en-us/documentation/powerbi-desktop-tutorial-row-level-security-onprem... is great for Tabular mode but I haven't find any example for multidimensional mode.

 

Does someone knows more on this topic?

 

Thank you

Labels:
Message 1 of 2
3,918 Views
0
1 ACCEPTED SOLUTION
Anonymous
Not applicable

‎01-29-2017 11:51 PM

Hi @vedran,

As described in this article, the effective username is passed to the gateway and then onto your on-premises Analysis Services server each time a user interacts a report connected to Analysis Services. The user principal name(UPN), typically the email address that you use to sign in Power BI with is passed to Analysis Services as the effective user.

The UPN is a property of an Active Directory account. That Windows account then needs to be present in an Analysis Services role to have access to the server. Analysis Services can provide filtering based on this account. The filtering can occur with either role based security, or row-level security. You would need to define security roles in your SSAS model in order to implement the role-based security.


Thanks,
Lydia Zhang

View solution in original post

Message 2 of 2
5,625 Views
0
1 REPLY 1
Anonymous
Not applicable

‎01-29-2017 11:51 PM

Hi @vedran,

As described in this article, the effective username is passed to the gateway and then onto your on-premises Analysis Services server each time a user interacts a report connected to Analysis Services. The user principal name(UPN), typically the email address that you use to sign in Power BI with is passed to Analysis Services as the effective user.

The UPN is a property of an Active Directory account. That Windows account then needs to be present in an Analysis Services role to have access to the server. Analysis Services can provide filtering based on this account. The filtering can occur with either role based security, or row-level security. You would need to define security roles in your SSAS model in order to implement the role-based security.


Thanks,
Lydia Zhang

Message 2 of 2
5,626 Views
0

Helpful resources

Announcements
New to Fabric survey Carousel

New to Fabric Survey

If you have recently started exploring Fabric, we'd love to hear how it's going. Your feedback can help with product improvements.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

Join our Fabric User Panel

Join our Fabric User Panel

Share feedback directly with Fabric product managers, participate in targeted research studies and influence the Fabric roadmap.

March Power BI Update Carousel

Power BI Community Update - March 2026

Check out the March 2026 Power BI update to learn about new features.

View All