Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join us for an expert-led overview of the tools and concepts you'll need to become a Certified Power BI Data Analyst and pass exam PL-300. Register now.

Reply
Rajnish366
Frequent Visitor

Issues in Dynamic RLS - one of my user is by-passing the RLS rule and able to see all data.

‎01-16-2025 10:14 AM

In my RLS enabled report on Services. one of report user is able to see all data by by-passing RLS rule . Can some one Help me out to find the possible reason.

RLS is based on Branch level 1 to many relation followed by Userprinciple () function to recognise the user.

Labels:
Message 1 of 9
463 Views
3 ACCEPTED SOLUTIONS
GilbertQ
Super User
Super User

‎01-16-2025 03:14 PM

Hi @Rajnish366 

 

Please make sure that the user does not have any roles in the workspace, as that will allow them to see all of the data. except for a viewer role, any other role, and they'll be able to see all the data.

 





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

View solution in original post

Message 2 of 9
425 Views
0
v-menakakota
Community Support
Community Support

‎01-16-2025 10:56 PM

Hi @Rajnish366 ,

Thank you for reaching out to us on the Microsoft Fabric Community Forum.

As @GilbertQ  mentioned, Ensure that the user is assigned to appropriate role within the workspace. As mentioned, any role with higher than 'Viewer' (such as Contributor, Member, or Admin) can bypass RLS and access all data, regardless of the RLS settings.

Providing the documentation link which might help you in clear understanding:

vmenakakota_0-1737096809911.png

 


Row-level security (RLS) with Power BI - Microsoft Fabric | Microsoft Learn

If this post was helpful, please give us Kudos and consider marking Accept as solution to assist other members in finding it more easily.

View solution in original post

Message 3 of 9
399 Views
0
v-menakakota
Community Support
Community Support
In response to Rajnish366

‎01-30-2025 03:22 AM

Hi @Rajnish366 ,

Thank you for reaching out to us on the Microsoft Fabric Community Forum.

You can modify the RLS filter in Manage Roles to ensure that users see only their assigned Cost Centers (CCs) that exist in the Fact Table.
Approach 1 :Apply RLS on the Fact Table Instead of Dim Table.

 

Approach 2:If you must apply RLS on the Dim Table, ensure it filters out CCs missing in the Fact Table.

If this post was helpful, please give us Kudos and consider marking Accept as solution to assist other members in finding it more easily.

Regards,
Menaka.

 

View solution in original post

Message 6 of 9
264 Views
0
8 REPLIES 8
Rajnish366
Frequent Visitor

‎01-24-2025 07:01 PM

Hi GilbertQ,

While debugging this issue we found that the Cost centers (used for join ) in my Dim table are not available in my Fact table and RLS user is able to see all CCs (not available in fact table) along with his/her own CCs data.

Is there any way to restrict in Manage roles (Dax) that the user will able to see his/her own data only even if CCs are not present in Dim table but available in Fact table.

Message 5 of 9
331 Views
0
v-menakakota
Community Support
Community Support
In response to Rajnish366

‎02-13-2025 09:26 PM

Hi @Rajnish366 ,

I hope this information is helpful. Please let me know if you have any further questions or if you'd like to discuss this further. If this answers your question, please Accept it as a solution and give it a 'Kudos' so others can find it easily.

Thank you and Regards,
Menaka.

Message 9 of 9
202 Views
0
v-menakakota
Community Support
Community Support
In response to Rajnish366

‎01-30-2025 03:22 AM

Hi @Rajnish366 ,

Thank you for reaching out to us on the Microsoft Fabric Community Forum.

You can modify the RLS filter in Manage Roles to ensure that users see only their assigned Cost Centers (CCs) that exist in the Fact Table.
Approach 1 :Apply RLS on the Fact Table Instead of Dim Table.

 

Approach 2:If you must apply RLS on the Dim Table, ensure it filters out CCs missing in the Fact Table.

If this post was helpful, please give us Kudos and consider marking Accept as solution to assist other members in finding it more easily.

Regards,
Menaka.

 

Message 6 of 9
265 Views
0
v-menakakota
Community Support
Community Support
In response to v-menakakota

‎02-02-2025 10:51 PM

Hi @Rajnish366 ,

May I ask if you have resolved this issue? If so, please mark the helpful reply and accept it as the solution. This will be helpful for other community members who have similar problems to solve it faster.

Regards,
Menaka.

Message 7 of 9
248 Views
0
v-menakakota
Community Support
Community Support
In response to v-menakakota

‎02-11-2025 02:28 AM

Hi @Rajnish366 ,

I wanted to check if you had the opportunity to review the information provided. Please feel free to contact us if you have any further questions. If my response has addressed your query, please accept it as a solution and give a 'Kudos' so other members can easily find it.

Thank you and Regards,
Menaka.

Message 8 of 9
219 Views
0
v-menakakota
Community Support
Community Support

‎01-16-2025 10:56 PM

Hi @Rajnish366 ,

Thank you for reaching out to us on the Microsoft Fabric Community Forum.

As @GilbertQ  mentioned, Ensure that the user is assigned to appropriate role within the workspace. As mentioned, any role with higher than 'Viewer' (such as Contributor, Member, or Admin) can bypass RLS and access all data, regardless of the RLS settings.

Providing the documentation link which might help you in clear understanding:

vmenakakota_0-1737096809911.png

 


Row-level security (RLS) with Power BI - Microsoft Fabric | Microsoft Learn

If this post was helpful, please give us Kudos and consider marking Accept as solution to assist other members in finding it more easily.

Message 3 of 9
400 Views
0
v-menakakota
Community Support
Community Support
In response to v-menakakota

‎01-23-2025 11:13 PM

Hi @Rajnish366 ,

May I ask if you have resolved this issue? If so, please mark the helpful reply and accept it as the solution. This will be helpful for other community members who have similar problems to solve it faster.

Thank you.

 

Message 4 of 9
353 Views
0
GilbertQ
Super User
Super User

‎01-16-2025 03:14 PM

Hi @Rajnish366 

 

Please make sure that the user does not have any roles in the workspace, as that will allow them to see all of the data. except for a viewer role, any other role, and they'll be able to see all the data.

 





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

Message 2 of 9
426 Views
0

Helpful resources

Announcements
Join our Fabric User Panel

Join our Fabric User Panel

This is your chance to engage directly with the engineering team behind Fabric and Power BI. Share your experiences and shape the future.

June 2025 Power BI Update Carousel

Power BI Monthly Update - June 2025

Check out the June 2025 Power BI update to learn about new features.

June 2025 community update carousel

Fabric Community Update - June 2025

Find out what's new and trending in the Fabric community.

View All