Ok, so if you have Windows auth setup, but you only allow a subset of your users to access the home folder in PBIRS any other users will see the following browser prompt, this is a standard browser response to a 401 (access denied) challenge
If I access my dev server using an inprivate window I get the prompt above. And if I then do as you suggest and click signin without entering any credentials it gives me the same message you see:
‘Could not load folder contents
You are not allowed to view this folder. Contact your administrator to obtain the necessary permissions.'
But this has not logged me in as anonymous or given me access to any reports or folders. It comes up with the error in a modal dialog which cannot be dismissed. And if you check the networking tab in the browser tools all the requests for report content return 403 (forbidden) errors.
So this is really just a custom access denied page - it's not actually logging in the anonymous user or giving them access to anything. I don't believe there is any way to change this - you'd probably have to raise a support ticket with Microsoft to get an engineer to look into this.
The way we prevent this from happening at my work is that we have added the "Domain Users" group with browser permissions to the home folder. Then we put all our reports under one of the top level folders and all security is controlled on the top level folders. So anyone without access to any reports just sees an empty page and no one ever gets prompted for credentials.
Ok, so if you have Windows auth setup, but you only allow a subset of your users to access the home folder in PBIRS any other users will see the following browser prompt, this is a standard browser response to a 401 (access denied) challenge
If I access my dev server using an inprivate window I get the prompt above. And if I then do as you suggest and click signin without entering any credentials it gives me the same message you see:
‘Could not load folder contents
You are not allowed to view this folder. Contact your administrator to obtain the necessary permissions.'
But this has not logged me in as anonymous or given me access to any reports or folders. It comes up with the error in a modal dialog which cannot be dismissed. And if you check the networking tab in the browser tools all the requests for report content return 403 (forbidden) errors.
So this is really just a custom access denied page - it's not actually logging in the anonymous user or giving them access to anything. I don't believe there is any way to change this - you'd probably have to raise a support ticket with Microsoft to get an engineer to look into this.
The way we prevent this from happening at my work is that we have added the "Domain Users" group with browser permissions to the home folder. Then we put all our reports under one of the top level folders and all security is controlled on the top level folders. So anyone without access to any reports just sees an empty page and no one ever gets prompted for credentials.
Helpful resources
Join us at the Microsoft Fabric Community Conference
March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount!
We want your feedback!
Your insights matter. That’s why we created a quick survey to learn about your experience finding answers to technical questions.
Microsoft Fabric Community Conference 2025
Arun Ulag shares exciting details about the Microsoft Fabric Conference 2025, which will be held in Las Vegas, NV.
A Year in Review - December 2024
Find out what content was popular in the Fabric community during 2024.
