Analyzing and Visualizing Data with Microsoft Power BI — Question 86

You have a Power BI report that is configured to use row-level security (RLS).
You have the following roles:
✑ A manager role that limits managers to see only the sales data from the stores they manage
✑ A region role that limits users to see only the data from their respective region
You plan to use Power BI Embedded to embed the report into an application. The application will authenticate the users.
You need to ensure that RLS is enforced when accessing the embedded report.
What should you do?

Answer options

• A. From dev.powerbi.com/apps, register the new application and enable the Read All Reports API access.
• B. In the access token for the application, include the user name and the role name.
• C. From dev.powerbi.com/apps, register the new application and enable the Read All Groups API access.
• D. In the access token for the application, include the report URL and the Microsoft Azure Active Directory domain name.

Correct answer: B

Explanation

Including the user name and the role name in the access token is essential for enforcing row-level security, as it helps Power BI determine what data the user is permitted to see based on their role. The other options do not directly address RLS enforcement; they focus on API access or include irrelevant information for the token, which won't ensure proper data visibility control.