Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Enhance your career with this limited time 50% discount on Fabric and Power BI exams. Ends September 15. Request your voucher.

Reply
Anonymous
Not applicable

How to Keep Workspace Safe from Administrator

‎04-02-2022 05:47 PM

Hello,


I'm working on a solution for senior leaders in a protected department in my organization. It will probably take the form of an app for access from the service or from Teams. There will be 50-100 monthly users.

 

Power BI free is my organization's default license type, and I don't want the hastle of making sure all users (which will obviously be an ever changing group) are upgraded to Pro.

 

My organization is very large, and I would be surprised if we weren't paying for multiple premium capacities already.

 

My solution needs to be protected (in its workspace, which I will eventually create) so that access is restricted only to my whitelist.

 

However, my understanding is that the administrator(s) of whatever premium capacity I find can add themselves to my workspace and, then, have full access to all of the data therein. That isn't acceptable for my requirements. I'm expecting that the capacity admins will be in IT, whereas only the leaders in my department (not IT) should be able to access the data for the solution.

 

My department would not pay to set up its own premium capacity simply for my one solution.

 

Obviously, I wouldn't want a situation in which an admin could add himself to the workspace, download/copy content, and then remove himself from the workspace.

 

Is there a way that I can keep my workspace safe from the admins? If not, how would you handle the type of deployment I'm trying to accomplish?

 

 All advice is greatly appreciated.

Labels:
Message 1 of 5
1,060 Views
0
1 ACCEPTED SOLUTION
samdthompson
Memorable Member
Memorable Member

‎04-03-2022 04:41 PM

Nope, cant be done. RLS based on static list or say AD group is over ridden by Admins. Thats sort of the point of admins. Probably have a look at your orgaisations policies on data access. Because data is generally in the remit of IT they will have access to the most sensitive data like, HR, Legal or contract. 

 

// if this is a solution please mark as such. Kudos always appreciated.

View solution in original post

Message 2 of 5
970 Views
4 REPLIES 4
samdthompson
Memorable Member
Memorable Member

‎04-03-2022 04:59 PM

ooooo, I am not sure about that sorry.

// if this is a solution please mark as such. Kudos always appreciated.
Message 4 of 5
965 Views
0
Anonymous
Not applicable
In response to samdthompson

‎04-03-2022 07:44 PM

I realized I should have also been asking this, @samdthompson.

 

Can capacity admins also give themselves access to a workspace, like the power bi service admins can?

Message 5 of 5
941 Views
0
samdthompson
Memorable Member
Memorable Member

‎04-03-2022 04:41 PM

Nope, cant be done. RLS based on static list or say AD group is over ridden by Admins. Thats sort of the point of admins. Probably have a look at your orgaisations policies on data access. Because data is generally in the remit of IT they will have access to the most sensitive data like, HR, Legal or contract. 

 

// if this is a solution please mark as such. Kudos always appreciated.
Message 2 of 5
971 Views
Anonymous
Not applicable
In response to samdthompson

‎04-03-2022 04:54 PM

Thanks for your reply, @samdthompson. Now, you have me curious.

 

Would I face the same/similar issue if I did not assign the workspace to a capacity and decided to make everyone have a pro account? My understanding is that my personal workspace is not accessible to anyone but me, but I'm asking about other workspaces not bound to a capacity (since I want to use an app for deployment).

Message 3 of 5
966 Views
0

Helpful resources

Announcements
August Power BI Update Carousel

Power BI Monthly Update - August 2025

Check out the August 2025 Power BI update to learn about new features.

August 2025 community update carousel

Fabric Community Update - August 2025

Find out what's new and trending in the Fabric community.

View All
Top Solution Authors
View All
Top Kudoed Authors
View All