Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

The Power BI DataViz World Championships are on! With four chances to enter, you could win a spot in the LIVE Grand Finale in Las Vegas. Show off your skills.

Reply
olejakobk
Frequent Visitor

Row level security with multiple roles

‎12-14-2017 08:46 AM

Hi everyone,

 

I have a on prem tabular SSAS model that I use through the gateway. There are two group of users:

  • Sales Managers are managers of salespersons. Dimension table is filtered so that they see all products, but limit salesperson.
  • Product Managers owns prodcuts. Dimension table is filtered so they can see all salespersons, but limit product.

Both these group of users have their own Power BI Dashaboard/Reports, security take hand of filtering the data to their field of interest.

 

The big question: How can this be solved if one user have both of these groups?

 

I was thinking I need some way of telling from the Power BI online report that the user is in this "role" now.

First thought was assigning SSAS roles in the connectionstring when creating report in Power BI Desktop. but it doesnt seem to work throught the Enterprise Gateway when published.

 

The alternative would be to have two models, each with its own security scheme activated.

 

Any thouhgts?

Labels:
Message 1 of 3
2,602 Views
0
2 REPLIES 2
clausm73
Helper III
Helper III

‎05-30-2018 02:23 AM

I'm facing the same issue - and the RLS documentation is NOT addressing the situation where a user belongs to multiple Security Roles - and we want to restrict on a specific Security Role.

 

Using Excel its possible to modify the ConnectionString to the Cube / Workspace adding a parameter for the preferred Security Role.

 

"Roles=Sales Managers" or "Roles= Product Managers".

 

How can this be achieved using Power BI published reports in the cloud? Where can the report designer choose what Security Role is intended to use a certain report variant?

Message 3 of 3
2,334 Views
v-caliao-msft
Microsoft Employee
Microsoft Employee

‎12-18-2017 01:44 AM

@olejakobk,

 

First thought was assigning SSAS roles in the connectionstring when creating report in Power BI Desktop. but it doesnt seem to work throught the Enterprise Gateway when published.

We can use the role which design on tabular model, here is a document which describe this, please refer to the link below.
https://docs.microsoft.com/en-us/power-bi/desktop-tutorial-row-level-security-onprem-ssas-tabular

 

Regards,

Charlie Liao

Message 2 of 3
2,575 Views
0

Helpful resources

Announcements
Las Vegas 2025

Join us at the Microsoft Fabric Community Conference

March 31 - April 2, 2025, in Las Vegas, Nevada. Use code MSCUST for a $150 discount!

Feb2025 Sticker Challenge

Join our Community Sticker Challenge 2025

If you love stickers, then you will definitely want to check out our Community Sticker Challenge!

Feb2025 NL Carousel

Fabric Community Update - February 2025

Find out what's new and trending in the Fabric community.

View All