How Self Serve Reporting works in Microsoft BI


  •   Data source is based on MS SQL databases.
    -          Data is accessible through a data warehouse. Selected databases/tables are shipped to the DW SQL servers.
    -          We need to provide user authentication:

    User logs into www.abc.com system
    abc company has a complex access control system based on a hierarchy established by the product type such as:

    Law Firm->Corporations
    Enterprise->business units

    Each of the above entities have users of different levels. Access control has to be enforced in cases such as in the Lawfirm edition a user from corporation A cannot access data for corporation B.
    1) User clicks on the reporting portal link
    2) User is taken to the reporting portal associated with their corporation. In there the user can run, edit, and add reports.

    Please suggest any ideas .

    Thanks in advance

    • Moved by Adam Wilson (Microsoft) Monday, October 21, 2013 11:52 PM General question pertaining to Power BI and not specific to Q&A
    Saturday, October 12, 2013 8:41 PM


  • Hi,

    First, apologies for the late response.

    Second, Power BI is based on SharePoint Online as part of Office 365 solution. This means that permission to reports and SPO sites is based on O365 permissions. I think the best way to separate access business units or corporations is to create to each its own SPO site and to provide permissions only to the users that should have access to it.

    If a user from BU A tries to access a report on a site of BU B that they have no permissions to (no view permissions) then they will not be able to open the report.

    However, users do have the option to share reports with other users, but only if they have edit permissions to the report and it's done explicitly.

    Hope this answers your question.


    Monday, October 28, 2013 12:54 PM