👷♂️User & Role Management
Managing different types of user accounts, assign roles, and ensure security
Last updated
Managing different types of user accounts, assign roles, and ensure security
Last updated
The login window offers three authentication methods:
Azure AD: Access the platform using Azure Active Directory credentials.
User Pass: Authenticate using unique user-password combination.
Mobile ID: Use mobile number for secure and convenient access.
Admins have the option to create users under three available categories
Go to 'Administration -> Users' and click '+ 'Create new user' in the top right corner. When creating a user you are responsible to assign users to relevant roles within Tenant.
As the Tenant admin, you have the ability to create role schemas that govern specific access to reports or permissions possessed by your users.
To manage these roles in your tenant navigate to Administration section and select 'Roles'.
Role schemas can be categorized into three buckets:
System Roles: ex. Tenant Admin, Report Admin, User Admin, and User - grant users access and permissions to specific areas within the Tenant.
Report Roles: These roles are attached to Power BI Items and users in your Tenant. Users can embed reports if they possess the same role attached to the item.
Row-Level Security Roles: Used with the Power BI Service Principal, ensure that users with specific Row-Level Security only access the necessary information from the data model.
Go to 'Administration -> Roles' and click '+ 'Create new role' in the top right corner. Create your 'role name' and give it a specific 'folder path' to categorize the role.
Click permissions 'Role Menu' and choose which permissions should be accessed through this role.
Azure AD: Users added directly from your Azure Active Directory, enabling integration and access within the tenant. These users can bring their Power BI Pro license for embedding. External AAD: Users will be added to your Azure Active Directory as guests with their invitation status marked as 'Pending Acceptance'. Can bring their Power BI Pro license for embedding.
User Pass: Users are provided with a unique user-password combination, granting them access to the tenant through authentication using their credentials.
Mobile ID: Users can access the tenant using their mobile devices, using mobile ID authentication for secure and convenient access to the tenant.
