28 Apr’16

BIRow Level Security using Power BI


Power BI Desktop Tool, Power BI Online Service

Purpose of the setup:

Purpose of this blog is to demonstrate Row Level Security (RLS) using Power BI


To demonstrate this, we have created a Power BI Desktop file and published it to Power BI Online account.

Before starting, let us assume a scenario where there is a Sales Organization.

A Sales organization uses CRM data. They need to provide Sales data by Role to different person as per their job profile or control. CEO of a Sales organization can view data for all the opportunities. Sales Manager can view only his related sales data i.e. opportunities created by the Sales Person under his team. Sales Person can view only his sales opportunities.

Fig 1: Scenario

This can be achieved using RLS in Power BI.


Here we have created a Dashboard with sample data for a Sales Organization that deals with Opportunity data from CRM.

Fig 2: CEO Dashboard

This is the Opportunity dashboard that shows the complete CRM Opportunity data of the organization.

Now if the CEO wants to restrict the Sales Manager and Sales Person to view only at their level i.e. the Sales Manager can view data under his team and a Sales Person can view only his data as an owner.

For achieving this the CEO can share the dashboard to the person and then can assign the role.

Step 1:

Select the dataset from which the row level security has to be applied.

There is a new option called SECURITY, which we find once we click on the ellipses (…) next to the dataset.

Fig 2: Security Option


Step 2:

Now click on Create New Role then add the email address of the person (which he uses as login id for his Power BI account) and then click on Add.

Fig 3: Adding Members to RLS


Step 3:

After adding the members click on Rules to provide the filtering of data based on DAX filters.

In Rules we have to select the table(s) on which we have to apply filter and then write the DAX Function in the DAX Input box.

Finally click on SAVE.

Fig 4:  Rules Option


Step 4:

Now we are done with RLS in Power BI, to view the result we can go to the person’s Power BI account and find the result.

Note: It may happen that the result is not visible immediately. So for that we can refresh the Power BI dashboard once.

In this case the dashboard has been already shared with the Sales Manager who according to the scenario is the Sales person in our case.

Fig 5: Sales Manager Level Dashboard

Similarly, CEO can apply RLS for a sales person to restrict to his data on dashboard.

Fig 6: Sales Person Level Dashboard

This is how RLS is achieved using Power BI. Since, this is in Preview there are few limitations too.


  1. You can define RLS only on the datasets created using Power BI Desktop client
  2. If you make a change to your PBIX file, and republish to the service, you will need to re-create RLS
  3. Defining RLS in a group workspace is not supported
  4. You cannot add security groups or distribution lists to the member list
  5. Q&A and Cortana is not supported with RLS


Written by

Team Member


2 thoughts on “Row Level Security using Power BI”

  1. Thanks for the document.
    I am newbie to the power bi.
    It really helps a lot.
    I would like to know that, i am not able to get the security option in power bi as a desktop.
    Is it for a trail version or for the paid version.
    Please suggest me.

  2. Hi Mohan,

    It seems that you are using Old version of Power BI. I request you to please download the latest Power BI set up and let us know, if issue still persists.

Leave a Reply

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload the CAPTCHA.

Want to streamline your business processes?

  • This field is for validation purposes and should be left unchanged.

Recent Articles

  • Reading more then 10K records in D3FOE OData API

    11 July’ 2018

    Introduction: We all know Dynamics 365 Finance and Operations has limitation of 10K records to be fetched at a time usi...

    Read more
  • Paging in D365 Customer Engagement v9.0

    10 July’ 2018

    Introduction: The Xrm.retrieveMultipleRecords method is used to retrieve a collection of records in Dynamics 365 Custom...

    Read more
  • Set up Dynamics 365 connection in Microsoft Social Engagement

    10 July’ 2018

    Introduction: This blog explains how to Set up Dynamics 365 connection in Microsoft Social Engagement. Steps to be follo...

    Read more
  • Voice of the Customer failed to install

    10 July’ 2018

    Introduction: Many people face issues in installing Voice of Customer solution on v9 environment and trying repeatedly ...

    Read more
  • Scribe Insight AX as a Web Service Find Block issue

    10 July’ 2018

    Introduction: If we need to look up for any value from AX then we do it by using a Find Block in Scribe Insight Eg: Basi...

    Read more