Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Be one of the first to start using Fabric Databases. View on-demand sessions with database experts and the Microsoft product team to learn just how easy it is to get started. Watch now

Reply
ldsmith919
Frequent Visitor

Row-Level Security in App doesn't match Workspace

‎05-06-2024 01:51 PM

I have read all the Microsoft documentation on this topic, but cannot seem to find an answer to my question.

 

Situation: I am trying to limit the data visible in a published Power BI app based on a user's division, however the visible data is displaying correctly in the app when I had them test it.

 

Example: Let's take the following sample table:

DivisionSales
A$10
B$20

I have applied row-level security to the semantic model such that my test user is in division A and the testing in PBI desktop does in fact show $10 in sales as expected.

 

When I test in the PBI Service however, I get the below results.  I would have expected at least one of these scenarios to result in the correct sales value ($10), but that does not seem to be the case.

Workspace AccessReport Sales ValueApp AccessApp Sales Value
Viewer$10granted as workspace user$30
NoneN/Aadded individually$30

 

I know that the app is just a display for the reports in a workspace and the audiences just limit which reports can be seen.  I also know row-level security is applied at the semantic model level.  My question is how to make the the correct sales values show the app?  (What roles or access needs to be given in the workspace and/or app to ensure this displays correctly?)

Labels:
Message 1 of 4
332 Views
0
1 ACCEPTED SOLUTION
ldsmith919
Frequent Visitor
In response to ldsmith919

‎05-07-2024 06:10 AM

In retracing steps, I found my issue and will detail here in case anyone else has the same problem.  There were two reports in my workspace: the original and the one with row-level security applied.  I had the original visible in the app and the new RLS hidden, so naturally the RLS would not apply in the app.

 

Steps to check:

  • Are you testing the correct report in both the workspace and app?
  • What access does user have in the workspace?
  • What access does user have in the app?
  • Is user included as member or in group of members assigned to role?

View solution in original post

Message 4 of 4
279 Views
3 REPLIES 3
GilbertQ
Super User
Super User

‎05-06-2024 03:19 PM

Hi @ldsmith919 

 

Can you confirm that you have put the user also into the role in the power bi service?





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!







Power BI Blog

Message 2 of 4
306 Views
ldsmith919
Frequent Visitor
In response to GilbertQ

‎05-07-2024 05:03 AM

Yes, we have a security group which includes all members of the user's team (including the user) that was added as a member to the role.

Message 3 of 4
282 Views
0
ldsmith919
Frequent Visitor
In response to ldsmith919

‎05-07-2024 06:10 AM

In retracing steps, I found my issue and will detail here in case anyone else has the same problem.  There were two reports in my workspace: the original and the one with row-level security applied.  I had the original visible in the app and the new RLS hidden, so naturally the RLS would not apply in the app.

 

Steps to check:

  • Are you testing the correct report in both the workspace and app?
  • What access does user have in the workspace?
  • What access does user have in the app?
  • Is user included as member or in group of members assigned to role?
Message 4 of 4
280 Views

Helpful resources

Announcements
Las Vegas 2025

Join us at the Microsoft Fabric Community Conference

March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount!

Dec Fabric Community Survey

We want your feedback!

Your insights matter. That’s why we created a quick survey to learn about your experience finding answers to technical questions.

ArunFabCon

Microsoft Fabric Community Conference 2025

Arun Ulag shares exciting details about the Microsoft Fabric Conference 2025, which will be held in Las Vegas, NV.

December 2024

A Year in Review - December 2024

Find out what content was popular in the Fabric community during 2024.

View All