Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Try your skills in the Power BI Dataviz World Championship! Round one ends June 26. Join now

Reply
JKPrasannaD
Microsoft Employee
Microsoft Employee

Refresh Failure

‎05-26-2026 02:26 AM

Normally my system is compliant and currently I am on MVD but receiving AADSTS53000 – DeviceNotCompliant error  and my report continuously gets refresh failure. Tried editing the data source settings and republishing but still i receive the same error. any ideas how to resolve this issue? 

Thanks in advance

Labels:
Message 1 of 7
394 Views
2 ACCEPTED SOLUTIONS
v-dineshya
Community Support
Community Support

‎05-28-2026 06:06 AM

Hi @JKPrasannaD ,

Thank you for reaching out to the Microsoft Community Forum. The error AADSTS53000 - DeviceNotCompliant indicates that Microsoft Entra ID (Azure AD) Conditional Access policy is blocking the token request because the device used for authentication is not meeting compliance requirements.

 

Please try below general troublesshooting steps to fix the issue.

1. Please Configure Service Principal authentication instead of user credentials. Assign it access to Data source and Power BI dataset.

2. Use On-Prem Gateway, Configure Enterprise Gateway and Bind dataset to gateway. use stored credentials within gateway

3. Please check with Azure admin team and ask them to exclude Power BI / Service Accounts from CA Policy.

 

I hope this information helps. Please do let us know if you have any further queries.

 

Regards,

Dinesh

View solution in original post

Message 4 of 7
242 Views
0
Poojara_D12
Super User
Super User

‎05-28-2026 11:22 PM

Hi @JKPrasannaD 

The AADSTS53000 error is happening because your company's Microsoft Entra Conditional Access policies are enforcing a strict device compliance check that the cloud-based Power BI Service engine simply cannot pass. While your personal machine or Virtual Desktop (MVD) is fully compliant, the scheduled data refresh runs in a background Microsoft cloud environment that lacks a physical device identity to present to your security framework, causing the policy to block the connection. To fix this, your IT or Entra administrator needs to modify the conditional access policy targeting the data source (like SharePoint or Azure SQL) and explicitly add the account running the refresh to the policy's Exclude list. If security policies forbid user exclusions, you should transition the dataset to authenticate via an On-Premises Data Gateway or use a Service Principal (App Registration), which shifts the authentication rules away from user-level device compliance checks and allows the background cloud refresh to complete successfully.

 

Did I answer your question? Mark my post as a solution, this will help others!
If my response(s) assisted you in any way, don't forget to drop me a "Kudos"

Kind Regards,
Poojara - Proud to be a Super User
Data Analyst | MSBI Developer | Power BI Consultant
Consider Subscribing my YouTube for Beginners/Advance Concepts: https://youtube.com/@biconcepts?si=04iw9SYI2HN80HKS

View solution in original post

Message 7 of 7
195 Views
0
6 REPLIES 6
Poojara_D12
Super User
Super User

‎05-28-2026 11:22 PM

Hi @JKPrasannaD 

The AADSTS53000 error is happening because your company's Microsoft Entra Conditional Access policies are enforcing a strict device compliance check that the cloud-based Power BI Service engine simply cannot pass. While your personal machine or Virtual Desktop (MVD) is fully compliant, the scheduled data refresh runs in a background Microsoft cloud environment that lacks a physical device identity to present to your security framework, causing the policy to block the connection. To fix this, your IT or Entra administrator needs to modify the conditional access policy targeting the data source (like SharePoint or Azure SQL) and explicitly add the account running the refresh to the policy's Exclude list. If security policies forbid user exclusions, you should transition the dataset to authenticate via an On-Premises Data Gateway or use a Service Principal (App Registration), which shifts the authentication rules away from user-level device compliance checks and allows the background cloud refresh to complete successfully.

 

Did I answer your question? Mark my post as a solution, this will help others!
If my response(s) assisted you in any way, don't forget to drop me a "Kudos"

Kind Regards,
Poojara - Proud to be a Super User
Data Analyst | MSBI Developer | Power BI Consultant
Consider Subscribing my YouTube for Beginners/Advance Concepts: https://youtube.com/@biconcepts?si=04iw9SYI2HN80HKS
Message 7 of 7
196 Views
0
v-dineshya
Community Support
Community Support

‎05-28-2026 06:06 AM

Hi @JKPrasannaD ,

Thank you for reaching out to the Microsoft Community Forum. The error AADSTS53000 - DeviceNotCompliant indicates that Microsoft Entra ID (Azure AD) Conditional Access policy is blocking the token request because the device used for authentication is not meeting compliance requirements.

 

Please try below general troublesshooting steps to fix the issue.

1. Please Configure Service Principal authentication instead of user credentials. Assign it access to Data source and Power BI dataset.

2. Use On-Prem Gateway, Configure Enterprise Gateway and Bind dataset to gateway. use stored credentials within gateway

3. Please check with Azure admin team and ask them to exclude Power BI / Service Accounts from CA Policy.

 

I hope this information helps. Please do let us know if you have any further queries.

 

Regards,

Dinesh

Message 4 of 7
243 Views
0
v-dineshya
Community Support
Community Support
In response to v-dineshya

‎05-31-2026 09:41 PM

Hi @JKPrasannaD ,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet. And, if you have any further query do let us know.

 

Regards,

Dinesh

Message 5 of 7
142 Views
0
v-dineshya
Community Support
Community Support
In response to v-dineshya

‎06-03-2026 10:47 PM

Hi @JKPrasannaD ,

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet. And, if you have any further query do let us know.

 

Regards,

Dinesh

Message 6 of 7
84 Views
0
GilbertQ
Super User
Super User

‎05-26-2026 03:02 PM

Hi @JKPrasannaD 

 

Can you mkae sure that the gateway is a registered device on your network?





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

Message 3 of 7
312 Views
0
krishnakanth240
Resident Rockstar
Resident Rockstar

‎05-26-2026 02:41 AM

Power BI might still be using old authentication token. Try clearing Data Source Settings and cache in Power BI Desktop, sign out from Power BI and Power BI service then sign back in and republish report. Also re-enter credentials in Power BI Service dataset settings

Message 2 of 7
376 Views
0

Helpful resources

Announcements
Fabric Data Days is here Carousel

Fabric Data Days 2026

Don't miss out on Data Days, June 15 through August 7. Learn Fabric, Power BI, SQL, AI and more.

Power BI DataViz World Championships carousel

Power BI DataViz World Championships - June 2026

A new Power BI DataViz World Championship is coming this June! Don't miss out on submitting your entry.

View All