Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join the FabCon + SQLCon recap series. Up next: Power BI, Real-Time Intelligence, IQ and AI, and Data Factory take center stage. All sessions are available on-demand after the live show. Register now

Reply
jamesh
Microsoft Employee
Microsoft Employee

Will constrained delegation using Kerberos be supported?

‎06-24-2015 09:00 PM

Regardless of the complexity of SSO we still have customers that want to "secure" everything they do with constrained delegation and in some instances see it as a show stopper.  Is there any plan to bring this into the product?

 

Thanks, James

Message 1 of 2
7,422 Views
0
1 REPLY 1
regbac
Regular Visitor

‎06-25-2015 12:15 AM

Waow, this is a very interesting question.

 

I suppose that they want to use KCD in regard to their on-premises data sources otherwise I don't see it makes sense.

And the only on-premises data source that there truely is right now is SSAS Tabular, which supports and uses the EffectiveUserName property.

 

The EffectiveUserName property is a real Kerberos "killer" as it push the username down to the data source eliminating the need for delegating credentials. This way you get row level security without the need for setting up KCD.

 

If it becomes supported you will still need to setup Azure AD and Azure AD Application Proxy and then use an Azure AD Application proxy connector on you on-prem side. If these are 2 different domains you will have even more challenges before it works.

 

So for now, I will stay with the EffectiveUserName property if it's a viable solution for you.

 

Cheers

 

Régis

Message 2 of 2
7,415 Views
0

Helpful resources

Announcements
April Power BI Update Carousel

Power BI Monthly Update - April 2026

Check out the April 2026 Power BI update to learn about new features.

New to Fabric survey Carousel

New to Fabric Survey

If you have recently started exploring Fabric, we'd love to hear how it's going. Your feedback can help with product improvements.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

FabCon and SQLCon Highlights Carousel

FabCon &SQLCon Highlights

Experience the highlights from FabCon & SQLCon, available live and on-demand starting April 14th.

View All