Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now! Learn more

Reply
PowerNewUser
Resolver I
Resolver I

OneLake Data Access + Live Connection = No Access in reports.

‎09-05-2024 08:16 AM

I recently enabled Data access roles in my lakehouse but cant get downstream users to access reports (they get errors on the visuals related to access). Would appreciate if anybody could help with what I'm missing!


- I have given access to the entra security groups directly on the lakehouse as READ. 

- I have tried adding the groups to an "alltables" role with direct assignment as well as lakehouse permission rule based assignment. 

- Default role was removed. 

- my other lakehouse without data access roles seems to be working just fine.. so am guessing its something to do with my setup. 

 

Reports are setup with a semantic model leveraging a live connection to the lakehouse. 

I can see the reports just fine as admin (have workspace level access). End users get the following on each visual - 

The SELECT permission or external policy action 'Microsoft.Sql/Sqlservers/Databases/Schemas/Tables/Rows/Select' was denied on the object....

 

Do I need to add all tables to the default semantic model? Do I need to grant/deny access in the SQL Endpoint as well? (Copilot had that suggestion)

Labels:
Message 1 of 4
1,101 Views
0
1 ACCEPTED SOLUTION
PowerNewUser
Resolver I
Resolver I

‎09-06-2024 05:25 AM

Figured out the problem - seems copilot was on the right track. Due to enabling the preview the READDATA is no longer coming up as a permission. I had to manually go in and give access to the schema 

GRANT SELECT ON SCHEMA::dbo TO [<entra group>];  
GO
if you need to give table level access - you can do 
GRANT SELECT ON OBJECT::dbo.<table name> TO [<entra group name>];  

View solution in original post

Message 4 of 4
1,034 Views
0
3 REPLIES 3
PowerNewUser
Resolver I
Resolver I

‎09-06-2024 05:25 AM

Figured out the problem - seems copilot was on the right track. Due to enabling the preview the READDATA is no longer coming up as a permission. I had to manually go in and give access to the schema 

GRANT SELECT ON SCHEMA::dbo TO [<entra group>];  
GO
if you need to give table level access - you can do 
GRANT SELECT ON OBJECT::dbo.<table name> TO [<entra group name>];  
Message 4 of 4
1,035 Views
0
Anonymous
Not applicable

‎09-05-2024 10:59 PM

Hi @PowerNewUser ,

 

Could you check whether the user has access rights to all of the following items?

1\ Semantic Model

2\ LakeHouse

3\ SQL analytics endpoint

4\ Report

 

You can check the user's permissions by clicking "Manage Permissions" on each item.

vxiaocliumsft_0-1725607959628.png

vxiaocliumsft_1-1725608003022.png

 

 

 

vxiaocliumsft_0-1725602283250.png

 

vxiaocliumsft_1-1725602283256.png

 

 

Best Regards,

Wearsky

Message 2 of 4
1,051 Views
0
PowerNewUser
Resolver I
Resolver I
In response to Anonymous

‎09-06-2024 05:14 AM

Thank you.. With the new preview ReadData is not showing up even when you select the option. 

Message 3 of 4
1,036 Views
0

Helpful resources

Announcements
Power BI DataViz World Championships

Power BI Dataviz World Championships

The Power BI Data Visualization World Championships is back! Get ahead of the game and start preparing now!

November Power BI Update Carousel

Power BI Monthly Update - November 2025

Check out the November 2025 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All