Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

We've captured the moments from FabCon & SQLCon that everyone is talking about, and we are bringing them to the community, live and on-demand. Starts on April 14th. Register now

Reply
Anonymous
Not applicable

Dynamic Row Based Security

‎10-10-2017 07:50 AM

I have been following THIS article on how to setup row based security using passed through credentials.

 

I have two identical (duplicates) tables: Employee, and EmployeeSecurity that consist of the following columns:

  • ContactID
  • SupervisorID
  • EmployeeNumber
  • FirstName
  • MiddleName
  • LastName
  • ActiveDirectoryUserName

 

I have a relationship setup between EmployeeSecurity.SupervisorID to Employee.ContactID.

 

I currently have a Role setup on the tabulear model that contains these to tables or dimensions with read access.

The Row Filter I am using could probably use some fixing but I'm not sure where:

 

=Employee[SupervisorID]=LOOKUPVALUE(EmployeeSecurity[SupervisorID],EmployeeSecurity[ActiveDirectoryUserName],USERNAME())

 

I am trying to make it so employees can see their supervisors, and/or supervisors can see their employees.  I'm hoping someone sees either what is wrong with my DAX or maybe I'm going about settin up the relationship incorrectly.

 

This is just for functionality practice to prove Dynamic Row Based Security will work for us.

Message 1 of 3
2,758 Views
0
2 REPLIES 2
v-yulgu-msft
Microsoft Employee
Microsoft Employee

‎10-12-2017 01:22 AM

Hi @Anonymous,

 

According to above tutorial, your DAX filter formula should be:

 =Employee[SupervisorID]=LOOKUPVALUE(EmployeeSecurity[SupervisorID],EmployeeSecurity[ActiveDirectoryUserName],USERNAME(), EmployeeSecurity[SupervisorID], Employee[SupervisorID])

Regards,
Yuliana Gu

Community Support Team _ Yuliana Gu
If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.
Message 2 of 3
2,730 Views
0
Anonymous
Not applicable
In response to v-yulgu-msft

‎10-12-2017 08:09 AM

Thanks for the response @v-yulgu-msft.

 

I'm wondering if the problem might be a few things together.  Possibly the created relationship with filter direction and a poor understanding of the LOOKUPVALUE DAX.

 

With the changes you suggested the user received no data.  I altered the DAX to:

=Employee[ContactID]=LOOKUPVALUE(EmployeeSecurity[ContactID],EmployeeSecurity[ActiveDirectoryUserName],USERNAME(), EmployeeSecurity[SupervisorID], Employee[SupervisorID])

And now the user sees SOME data but not his/her own records.

 

Does anyone have experiance with this, and if so do you have any documentation, examples I can look at?

Message 3 of 3
2,721 Views
0

Helpful resources

Announcements
New to Fabric survey Carousel

New to Fabric Survey

If you have recently started exploring Fabric, we'd love to hear how it's going. Your feedback can help with product improvements.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

Join our Fabric User Panel

Join our Fabric User Panel

Share feedback directly with Fabric product managers, participate in targeted research studies and influence the Fabric roadmap.

March Power BI Update Carousel

Power BI Community Update - March 2026

Check out the March 2026 Power BI update to learn about new features.

View All