Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI Data Visualization World Championships is back! It's time to submit your entry. Live now!

Reply
Jsola
Frequent Visitor

Is Creating a Separate Tenant for Embedded Reports in Fabric a Good Practice?

‎02-20-2025 01:42 AM

Hi,

We are building a reporting system based on Microsoft Fabric, where reports will be embedded in our application and accessed by our customers.

We are considering creating a new tenant to manage around 500 workspaces (one per customer) and configure Fabric admin settings, Azure service principals, and other necessary components specifically for these embedded reports.

Currently, we have an existing tenant with many corporate reports and users. For security and administrative reasons, we believe that setting up a separate tenant might be the best approach.

Our question is:
Is it a good practice to create a separate tenant for this case, or should a separate tenant only be considered for special scenarios?

We would appreciate any insights or recommendations.

Many thanks in advance!!!

Message 1 of 5
387 Views
0
2 ACCEPTED SOLUTIONS
ibarrau
Super User
Super User

‎02-20-2025 05:34 AM

Hi. I don't think there is a good practice talking about that. I would say the best here is kind off the one that fits better for your company and maintainance. I would probably say no to prevent data silos or duplications. If you already have some reports in one tenant, keep it that way. If you want to separate what is for embedded and what's not, then you could use a naming convention for the workspaces, you can use fabric domains or even keep different capacities. That way it's separated to maintain and still in the same place.

I hope that helps,


If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Happy to help!

LaDataWeb Blog

View solution in original post

Message 2 of 5
349 Views
ibarrau
Super User
Super User
In response to Jsola

‎02-20-2025 07:46 AM

That's why I said that there is no good practice haha. In real world, it depends. If you want to keep a clean differente environment, you can do it in a different tenant. Well, contraindications, you could have duplication or rework if there are reports that should be shared internally and also in the webapp. Also you won't be able to take adventage of the capacity features for internal use unless you have two capacities. In addition, the onpremise sources will require two on premise data gateways (I'm not sure if you can host two in the same machine)

Personally, if you will have fabric and capacity admin in the current tenant. You could work in a clean domain of workspaces at the dedicated capacity and just look that. You could work in a nice naming convention. With all that the logs and measures could be filtered to monitor in a nice clean way. But again, it depends on how the company works, internal flows, burocracy, mates, etc.

I hope that make sense.


If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Happy to help!

LaDataWeb Blog

View solution in original post

Message 4 of 5
341 Views
4 REPLIES 4
Jsola
Frequent Visitor

‎02-20-2025 08:06 AM

Hi. You are right. On paper, anything is possible. But in the real world, we have to deploy systems that make life easier, and it's difficult to see the right path.

Thanks a lot for your support.

Message 5 of 5
336 Views
0
Jsola
Frequent Visitor

‎02-20-2025 07:16 AM

Hi,

 

Thanks for your quick response.

 

We want to separate because Fabric admin options will be different, we want to know client consumption by client, avoid incorrect security management.  Current tenant is a bit chaos 😁

 

I will change the question 😁: Are there any contraindications to deploying a new tenant?

 

Thanks again

 

Josep Solà

 

Message 3 of 5
345 Views
0
ibarrau
Super User
Super User
In response to Jsola

‎02-20-2025 07:46 AM

That's why I said that there is no good practice haha. In real world, it depends. If you want to keep a clean differente environment, you can do it in a different tenant. Well, contraindications, you could have duplication or rework if there are reports that should be shared internally and also in the webapp. Also you won't be able to take adventage of the capacity features for internal use unless you have two capacities. In addition, the onpremise sources will require two on premise data gateways (I'm not sure if you can host two in the same machine)

Personally, if you will have fabric and capacity admin in the current tenant. You could work in a clean domain of workspaces at the dedicated capacity and just look that. You could work in a nice naming convention. With all that the logs and measures could be filtered to monitor in a nice clean way. But again, it depends on how the company works, internal flows, burocracy, mates, etc.

I hope that make sense.


If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Happy to help!

LaDataWeb Blog

Message 4 of 5
342 Views
ibarrau
Super User
Super User

‎02-20-2025 05:34 AM

Hi. I don't think there is a good practice talking about that. I would say the best here is kind off the one that fits better for your company and maintainance. I would probably say no to prevent data silos or duplications. If you already have some reports in one tenant, keep it that way. If you want to separate what is for embedded and what's not, then you could use a naming convention for the workspaces, you can use fabric domains or even keep different capacities. That way it's separated to maintain and still in the same place.

I hope that helps,


If this post helps, then please consider Accept it as the solution to help the other members find it more quickly.

Happy to help!

LaDataWeb Blog

Message 2 of 5
350 Views

Helpful resources

Announcements
Power BI DataViz World Championships

Power BI Dataviz World Championships

The Power BI Data Visualization World Championships is back! It's time to submit your entry.

January Power BI Update Carousel

Power BI Monthly Update - January 2026

Check out the January 2026 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All