Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enhance your career with this limited time 50% discount on Fabric and Power BI exams. Ends August 31st. Request your voucher.

Reply
nguidoux
New Member

Add Connection Role Assignment to ServicePrincipalProfile type

‎08-15-2025 05:17 PM

According to the add connection role documentation it looks like the ServicePrincipalProfile type should be able to be added to a connection with a role.
https://learn.microsoft.com/en-us/rest/api/fabric/core/connections/add-connection-role-assignment?ta...

Any request to add a role to a connection for a ServicePrincipalProfile type results in a BadRequest. There are no details given as to why it is a bad request. It does not seem to matter what role is assigned.

Example request that results in a 400

https://api.fabric.microsoft.com/v1/connections/f3a2e6af-d048-4f85-94d9-b3d16140df05/roleAssignments

{
  "principal": {
    "id": "6a002b3d-e4ec-43df-8c08-e8eb7547d9dd",
    "type": "ServicePrincipalProfile",
    "servicePrincipalProfileDetails": {
      "parentPrincipal": {
        "type": "ServicePrincipal",
        "id": "12ed1a62-05f2-4e13-a2ad-047ac5934d33"
      }
    }
  },
  "role": "Owner"
}

 

I have been able to successfully assign the Admin role to a Workspace for Service Principal Profiles.
https://api.fabric.microsoft.com/v1/workspaces/{workspaceId}/roleAssignments

Labels:
Message 1 of 4
248 Views
0
3 REPLIES 3
v-veshwara-msft
Community Support
Community Support

Tuesday

Hi @nguidoux ,

Thanks for posting in the Microsoft Fabric Community.

It may be that assigning a Service Principal Profile to a connection is not supported at this time, even though the API schema shows that type. This could explain why the request returns a BadRequest.

For Service Principal Profiles, the supported option seems to be at the workspace level, where they can be added but only with Admin rights.
Reference: Solved: Add Service Principal Profile as anything but Admi... - Microsoft Fabric Community

Document: Use service principal profiles to manage customer data in multitenant apps - Power BI | Microsoft Le...

 

If this is something you need for connections, it may help to raise a support ticket with Microsoft for further clarification.

 

Hope this helps. Please reach out for further assistance.

Thank you.

Message 4 of 4
61 Views
0
tharunkumarRTK
Super User
Super User

‎08-16-2025 09:53 AM

I guess you are trying to add an SPN to a gateway connection by calling an API. 

 

If yes, then please check whether you have sufficient permissions to do so, as per the documentation, these permissions are needed : "The caller must have UserWithReshare or higher role on the connection or be an Adminon the gateway that's bound to the connection."

 

Once you get permissions run the below call

API End point - POST call

https://api.powerbi.com/v2.0/myorg/me/gatewayClusters/<GatewayClusterID>/datasources/<ConnectionDI>/users

Body 

{"identifier":"3d57a533-0719-4528-9d32-7f62c153acb8","datasourceAccessRight":"Read","emailAddress":null,"role":"User"

 

 

 

 

 

 

Connect on LinkedIn

 

 

 








Did I answer your question? Mark my post as a solution!
If I helped you, click on the Thumbs Up to give Kudos.

Proud to be a Super User!
PBI_SuperUser_Rank@2x.png
Message 2 of 4
181 Views
nguidoux
New Member
In response to tharunkumarRTK

Monday

I'm trying to add a ServicePrincipalProfile to a Databricks connection. The Service Principal I'm making the call with is an Owner on the connection.

Message 3 of 4
140 Views
0

Helpful resources

Announcements
August Power BI Update Carousel

Power BI Monthly Update - August 2025

Check out the August 2025 Power BI update to learn about new features.

August 2025 community update carousel

Fabric Community Update - August 2025

Find out what's new and trending in the Fabric community.

View All