Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join the Fabric FabCon Global Hackathon—running virtually through Nov 3. Open to all skill levels. $10,000 in prizes! Register now.

Reply
DimitraG
Frequent Visitor

Configure service principal for cloud data source e

‎04-08-2025 11:04 AM

Hello!
I'm looking for guidance on setting up a Cloud data source connection for semantic models to access my Lakehouse.

Specifically, I need help with the configuration to authenticate via a service principal. After creating the service principal, do I need to assign specific permissions or enable any settings for service principals to access Fabric APIs? Additionally, should the service principal be added to a security group? As my understanding the service principal should have contrivutor role in workspace .

Thanks in advance!

 
 
 
 
 
Message 1 of 6
358 Views
0
2 ACCEPTED SOLUTIONS
GilbertQ
Super User
Super User

‎04-08-2025 02:57 PM

Hi @DimitraG 

 

Once you create a service principle, you should always add it to an Entra ID security group. You can then give that security group workspace permissions, which should then allow to read from the lakehouse.





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

View solution in original post

Message 2 of 6
313 Views
0
v-sdhruv
Community Support
Community Support

‎04-09-2025 06:38 AM

Hi @DimitraG ,

There are two types of authentication available for service principals:
password-based authentication (application secret) and certificate-based authentication.
But first you need Microsoft Entra ID.

If you need help creating a service principal, you refer this link
Register a Microsoft Entra app and create a service principal
After creating Service principal you should add it to security group.
You can Enable service principal authentication for admin APIs using these steps
https://learn.microsoft.com/en-us/fabric/admin/enable-service-principal-admin-apis
Hope this helps!
If this answers your question, please Accept it as a solution and give it a 'Kudos' so others can find it easily.
Thank you.

View solution in original post

Message 3 of 6
284 Views
0
5 REPLIES 5
v-sdhruv
Community Support
Community Support

‎04-26-2025 03:42 AM

Hi @DimitraG ,
Just wanted to check if you had the opportunity to review the information provided ?
 If the response has addressed your query, please accept it as a solution and give a 'Kudos' so other members can easily find it.
Thank you

Message 6 of 6
222 Views
0
v-sdhruv
Community Support
Community Support

‎04-20-2025 04:46 AM

Hi @DimitraG ,
Just wanted to check if you had the opportunity to review the information provided ?
 If the response has addressed your query, please accept it as a solution and give a 'Kudos' so other members can easily find it.
Thank you

Message 5 of 6
250 Views
0
v-sdhruv
Community Support
Community Support

‎04-14-2025 01:43 AM

Hi @DimitraG ,
Just wanted to check if you had the opportunity to review the information provided ?
 If the response has addressed your query, please accept it as a solution and give a 'Kudos' so other members can easily find it.
Thank you.

Message 4 of 6
262 Views
0
v-sdhruv
Community Support
Community Support

‎04-09-2025 06:38 AM

Hi @DimitraG ,

There are two types of authentication available for service principals:
password-based authentication (application secret) and certificate-based authentication.
But first you need Microsoft Entra ID.

If you need help creating a service principal, you refer this link
Register a Microsoft Entra app and create a service principal
After creating Service principal you should add it to security group.
You can Enable service principal authentication for admin APIs using these steps
https://learn.microsoft.com/en-us/fabric/admin/enable-service-principal-admin-apis
Hope this helps!
If this answers your question, please Accept it as a solution and give it a 'Kudos' so others can find it easily.
Thank you.

Message 3 of 6
285 Views
0
GilbertQ
Super User
Super User

‎04-08-2025 02:57 PM

Hi @DimitraG 

 

Once you create a service principle, you should always add it to an Entra ID security group. You can then give that security group workspace permissions, which should then allow to read from the lakehouse.





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

Message 2 of 6
314 Views
0

Helpful resources

Announcements
September Power BI Update Carousel

Power BI Monthly Update - September 2025

Check out the September 2025 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All
Top Solution Authors
View All