Power BI Permissions

Body

For users to access reports within the Power BI Service, there are four types of permissions to consider.

Detailed Information

Workspace Permissions

Permissions here are granted within the Workspace itself. Details can be found on the Roles in workspaces in Power BI page (Microsoft site).

Semantic model (dataset) Permissions

Each semantic model within the Power BI Service needs to have permissions added so that users can see the reports and dashboards that use them. Details can be found on the Managing Dataset Permissions page.

App Permissions

This set of permissions controls whether a user is able to install an App built from a Workspace. More details can be found in the Publishing an App page.

Row Level Security Permissions

This level of permissions control what data within a dataset is able to be accessed by users according to the user's group memberships. More details can be found on the Row Level Security in Power BI page.

Instructions

Reports without Row-Level Security (RLS)

  1. Go to the workspace the report is located in.
  2. Without opening the report, click on the "More Options" ellipses next to the report name and select "Manage Permissions".
  3. In the "Direct Access" tab, add users by adding their UMS email address or an Azure Security Group, generally just with "Read" permissions.
  4. DO NOT create a link in the "Links" tab (this link would override permissions from the Direct Access tab).
  5. Open the report.
  6. Get the link from the "Share" menu. Set the Send Link to “People with existing access”
  7. Copy Link (this is the link to share with the user).

Reports with Row-Level Security (RLS)

  1. Set up RLS within the project on the desktop.
  2. Go to the workspace the report and model are located in. Click on the "More Options" ellipses next to the Semantic Model and select "Security".
  3. Add users by adding their UMS email address or an Azure Security Group, as needed, to the RLS security groups.
  4. Go to the workspace the report is located in.
  5. Without opening the report, click on the "More Options" ellipses next to the report name and select "Manage Permissions".
  6. In the "Links" menu, select the "Add Link" button and create a link with "Who has Access = People in your organization". Share this link with users.
​​​​​​​

Additional Information

Use Groups to Set Up Permissions

You can use Azure security groups to set up permissions in Power BI.  To request a new Security Group, create a ticket with the Help Desk and include the reason for and use of the group, the email address of who should have permission to maintain the group, and a list of the emails for the members of the group.

For instructions for managing the group, please read How to Manage Security Groups in Sharepoint page.

Environment

Power BI

Details

Details

Article ID: 159360
Created
Fri 5/10/24 5:00 AM
Modified
Thu 8/29/24 4:18 PM
Applies To
Faculty
Staff

Related Articles

Related Articles (1)

Row Level Security in Power BI