Skip to main content
cancel
Showing results for 
Search instead for 
Did you mean: 

The Power BI DataViz World Championships are on! With four chances to enter, you could win a spot in the LIVE Grand Finale in Las Vegas. Show off your skills.

Reply
land17301
New Member

Power BI Multi-Tenancy

Our Power BI reports currently pull data from our SQL databases hosted on an Azure virtual machine. The SQL instance is only accessible within its virtual network or directly from the server itself.

We are presently updating data to two Power BI tenants:

  • Tenant 1 uses a Power BI gateway in standard mode.
  • Tenant 2 uses a Power BI gateway in personal mode.

Now, we have a client who wants to host the Power BI reports in their own tenant, referred to as Tenant 3. How can we support Tenant 3 without adding an additional virtual machine to the setup?

1 ACCEPTED SOLUTION
v-kpoloju-msft
Community Support
Community Support

Hi @land17301,

 

Thank you for reaching out to the Microsoft Fabric community Forum.

 

Yes, it is possible to support Tenant 3 in Microsoft Fabric without adding an additional virtual machine. Please go through the below following steps to solve your issue.

 

  • Create a new workspace in Microsoft Fabric. This workspace will be used to manage data and reports for Tenant 3.
  • Ingest data from your SQL databases into Fabric. You can use Dataflows or Data Engineering experiences like Spark or Dataflow Gen 2 to transform and load data into a Lakehouse.
  • When you create a lake house in fabric, a power bi semantic model and a sql endpoint are automatically created. Use the semantic model for power bi reporting and the sql endpoint for direct queries.
  • Use Power BI Embedded to embed your reports into Tenant 3's web application. This allows Tenant 3 to access the reports through their own application.
  • Ensure that data isolation and security measures are in place. Use service principal profiles to manage organizational content and achieve tenant isolation.
  • Depending on whether Tenant 3 users are internal or external, configure the appropriate authentication method. For internal users, use Microsoft Entra ID formerly Azure Active Directory for external users, use embedding identities Microsoft Entra service principal or master user account.

Please go through the below documentation links for better understanding.

Tutorial: Connect to on-premises data in SQL Server - Power BI | Microsoft Learn

Power BI implementation planning: Data gateways - Power BI | Microsoft Learn

 

I hope my suggestions give you good ideas, if you have any more questions, please feel free to reach out.

If this post helps, then please give us Kudos and consider Accept it as a solution to help the other members find it more quickly.


Thank you.

 

 

 

View solution in original post

6 REPLIES 6
v-kpoloju-msft
Community Support
Community Support

Hi @land17301,

 

Thank you for reaching out to the Microsoft Fabric community Forum.

 

Yes, it is possible to support Tenant 3 in Microsoft Fabric without adding an additional virtual machine. Please go through the below following steps to solve your issue.

 

  • Create a new workspace in Microsoft Fabric. This workspace will be used to manage data and reports for Tenant 3.
  • Ingest data from your SQL databases into Fabric. You can use Dataflows or Data Engineering experiences like Spark or Dataflow Gen 2 to transform and load data into a Lakehouse.
  • When you create a lake house in fabric, a power bi semantic model and a sql endpoint are automatically created. Use the semantic model for power bi reporting and the sql endpoint for direct queries.
  • Use Power BI Embedded to embed your reports into Tenant 3's web application. This allows Tenant 3 to access the reports through their own application.
  • Ensure that data isolation and security measures are in place. Use service principal profiles to manage organizational content and achieve tenant isolation.
  • Depending on whether Tenant 3 users are internal or external, configure the appropriate authentication method. For internal users, use Microsoft Entra ID formerly Azure Active Directory for external users, use embedding identities Microsoft Entra service principal or master user account.

Please go through the below documentation links for better understanding.

Tutorial: Connect to on-premises data in SQL Server - Power BI | Microsoft Learn

Power BI implementation planning: Data gateways - Power BI | Microsoft Learn

 

I hope my suggestions give you good ideas, if you have any more questions, please feel free to reach out.

If this post helps, then please give us Kudos and consider Accept it as a solution to help the other members find it more quickly.


Thank you.

 

 

 

Hi @land17301,

 

May I ask if you have resolved this issue? If so, please mark the helpful reply and accept it as the solution. This will be helpful for other community members who have similar problems to solve it faster.

 

Thank you.

Hi @land17301,

I wanted to check if you had the opportunity to review the information provided. Please feel free to contact us if you have any further questions. If my response has addressed your query, please accept it as a solution and give a 'Kudos' so other members can easily find it.


Thank you.

land17301
New Member

@rajendraongole1 The SQL database is not Azure-hosted; it is hosted on an Azure virtual machine.

Hi @land17301  - The On-Premises Data Gateway method is the most straightforward and scalable approach for this scenario. It allows Tenant 3 to securely connect to the SQL database hosted on the Azure VM without requiring significant infrastructure changes.

 

Connect to the SQL Database:

In Tenant 3’s Power BI workspace, create a new data source using the gateway.
Use the database credentials for authentication.
Security Considerations:

Ensure that Tenant 3 has access only to the necessary data and not the entire SQL database.
Use Row-Level Security (RLS) or database views to restrict access.





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!





rajendraongole1
Super User
Super User

Hi @land17301  - you can use the Existing Virtual Network Gateway:The on-premises data gateway in standard mode can be used to securely connect Tenant 3 to your Azure-hosted SQL database.
You can install another instance of the Power BI on-premises gateway in standard mode on an existing server within the virtual network.
Share the Gateway with Tenant 3:In Tenant 3, add the SQL database as a data source to the new or existing gateway in standard mode.
Use Azure AD authentication or other supported SQL authentication methods to allow Tenant 3 to connect securely.
This avoids the need for a personal mode gateway, which is tied to a single user account.
Configure Access:Ensure that the SQL database is accessible through the gateway by granting the required permissions to the users in Tenant 3.
Add the necessary firewall rules in Azure to allow the gateway server to access the SQL database.





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!





Helpful resources

Announcements
Feb2025 Sticker Challenge

Join our Community Sticker Challenge 2025

If you love stickers, then you will definitely want to check out our Community Sticker Challenge!

Jan NL Carousel

Fabric Community Update - January 2025

Find out what's new and trending in the Fabric community.