Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The FabCon + SQLCon recap series starts April 14th at 8am Pacific. If you’re tracking where AI is going inside Fabric, this first session is a can't miss. Register now

Reply
biscuitking
New Member

Destruction of credentials

‎02-18-2026 08:57 AM
Power BI deployment pipelines can and do destroy credentials, and there is currently no mechanism to preserve, restore, or warn about that.  Version control doesn't fix this.  There is no rollback function.    
 
Want to check the deployment rules before migrating?  You aren't the model owner, so you can't even look at the rules.  It doesn't matter that you are listed as a workspace owner.  
 
If we can't view basic things like deployment rules, at least warn us when a deployment will result in a different data source identity and therefore invalidate bindings/credentials.
Message 1 of 5
2,681 Views
1 ACCEPTED SOLUTION
MohdZaid_
Solution Sage
Solution Sage

‎02-18-2026 09:09 AM

Hey @biscuitking , 

You're absolutely right deployment pipelines currently don’t provide visibility into credential impact or deployment rule changes unless you're the dataset owner. There’s also no rollback mechanism if credentials are invalidated during deployment.

 

This is a known limitation rather than a configuration mistake. Until Microsoft improves this, the safest approach is standardizing data source identities across environments and using service principals to maintain consistent ownership and rule visibility.

 

It would definitely improve the product if Microsoft added a pre-deployment impact analysis that flags identity changes and potential credential loss.

 

 

If this solved your issue, please mark it as the solution so others can find it easily.

If it helped, a quick 👍 Kudos is always appreciated it helps highlight useful answers for the community.

Thanks for being part of the discussion !!!

View solution in original post

Message 2 of 5
2,669 Views
4 REPLIES 4
biscuitking
New Member

‎02-21-2026 06:59 AM

Service Principals seem to be the solution.  20/20 hindsight says that we should have evaluated how much more intervention would be required by global administrators to make much of this work.

Message 4 of 5
2,543 Views
0
v-hjannapu
Community Support
Community Support
In response to biscuitking

‎02-22-2026 08:37 PM

Hi @biscuitking,

Yes, you are correct. When using Service Principals, some setup from Global Admin side is required, like app registration and enabling the required tenant settings. Many times this part is understood only later, once we start implementing it.

If you are planning to move ahead with Service Principal setup and need any clarification on specific steps, please let us know. We will help based on that.


Regards,
Community Support Team.

Message 5 of 5
2,488 Views
0
Olufemi7
Solution Sage
Solution Sage

‎02-19-2026 04:52 AM

Hello @biscuitking

This is expected behavior in Power BI Deployment Pipelines. Credentials are environment-specific and are not deployed. If deployment rules or bindings change the data source identity, credentials may need reconfiguration, and there is no rollback or versioning. Deployment rule visibility depends on pipeline permissions, not workspace roles.

Best practice is to keep data source identities consistent across environments and automate re-binding where needed.

 

Microsoft docs:
Introduction to deployment pipelines 
Get started with deployment pipelines 

 

Message 3 of 5
2,595 Views
0
MohdZaid_
Solution Sage
Solution Sage

‎02-18-2026 09:09 AM

Hey @biscuitking , 

You're absolutely right deployment pipelines currently don’t provide visibility into credential impact or deployment rule changes unless you're the dataset owner. There’s also no rollback mechanism if credentials are invalidated during deployment.

 

This is a known limitation rather than a configuration mistake. Until Microsoft improves this, the safest approach is standardizing data source identities across environments and using service principals to maintain consistent ownership and rule visibility.

 

It would definitely improve the product if Microsoft added a pre-deployment impact analysis that flags identity changes and potential credential loss.

 

 

If this solved your issue, please mark it as the solution so others can find it easily.

If it helped, a quick 👍 Kudos is always appreciated it helps highlight useful answers for the community.

Thanks for being part of the discussion !!!

Message 2 of 5
2,670 Views

Helpful resources

Announcements
New to Fabric survey Carousel

New to Fabric Survey

If you have recently started exploring Fabric, we'd love to hear how it's going. Your feedback can help with product improvements.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

Join our Fabric User Panel

Join our Fabric User Panel

Share feedback directly with Fabric product managers, participate in targeted research studies and influence the Fabric roadmap.

March Power BI Update Carousel

Power BI Community Update - March 2026

Check out the March 2026 Power BI update to learn about new features.

View All
Top Solution Authors
View All