datahub/docs/quick-ingestion-guides/powerbi/setup.md

---
title: Setup
---

# PowerBI Ingestion Guide: Setup & Prerequisites

In order to configure ingestion from PowerBI, you'll first have to ensure you have an Azure AD app with permission to access the PowerBI resources.

## PowerBI Prerequisites

1. **Create an Azure AD app:** Follow below steps to create an Azure AD app

   a. Login to https://portal.azure.com

   b. Go to `Azure Active Directory`

   c. Navigate to `App registrations`

   d. Click on `+ New registration`

   e. On `Register an application` window fill the `Name` of application says `powerbi-app-connector` and keep other default as is

      <p align="center">
   <img width="75%" alt="app_registration" src="http://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/app-registration.png"/>
      </p>

   f. On `Register an application` window click on `Register`

   g. The Azure portal will open up the `powerbi-app-connector` window as shown below. On this screen note down the `Application (client) ID` and click on `Add a certificate or secret` to generate a secret for the `Application (client) ID`

      <p align="center">
   <img width="75%" alt="powerbi_app_connector" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/powerbi-connector-window.png"/>
      </p>

   f. On `powerbi-connector-app | Certificates & secrets` window generate the client secret and note down the `Secret`

2. **Create an Azure AD Security Group:** You need to add the `Azure AD app` into the security group to control resource permissions for the `Azure AD app`. Follow below steps to create an Azure AD Security Group.

   a. Go to `Azure Active Directory`

   b. Navigate to `Groups` and click on `New group`

   c. On `New group` window fill out the `Group type`,&nbsp; `Group name`, &nbsp;`Group description`. &nbsp;`Group type` should be set to `Security` . &nbsp; `New group` window is shown in below screenshot.

      <p align="center">
   <img width="75%" alt="powerbi_app_connector" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/new-group-window.png"/>
      </p>

   d. On `New group` window click on `No members selected` and add `Azure AD app` i.e. _powerbi-connector-app_ as member

   f. On `New group` window click on `Create` to create the security group `powerbi-connector-app-security-group`.

3. **Assign privileges to powerbi-connector-app-security-group:** You need to add the created security group into PowerBI portal to grant resource access. Follow below steps to assign privileges to your security group.

   a. Login to https://app.powerbi.com/

   b. Go to `Settings` -> `Admin Portal`

   c. On `Admin Portal` navigate to `Tenant settings` as shown in below screenshot.

      <p align="center">
   <img width="75%" alt="powerbi_admin_portal" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/powerbi-admin-portal.png"/>
      </p>

   d. **Enable PowerBI API:** Under `Tenant settings` -> `Developer settings` -> `Allow service principals to use Power BI APIs` add the previously created security group i.e. _powerbi-connector-app-security-group_ into `Specific security groups (Recommended)`

   e. **Enable Admin API Settings:** Under `Tenant settings` -> `Admin API settings` enable the following options

   - `Allow service principals to use read-only admin APIs`
   - `Enhance admin APIs responses with detailed metadata`
   - `Enhance admin APIs responses with DAX and mashup expressions`

   f. **Add Security Group to Workspace:** Navigate to `Workspaces` window and open workspace which you want to ingest as shown in below screenshot and click on `Access` and add `powerbi-connector-app-security-group` as member. For most cases `Viewer` role is enough, but for profiling the `Contributor` role is required.

      <p align="center">
   <img width="75%" alt="workspace-window-underlined" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/workspace-window-undrlined.png"/>
      </p>

## Next Steps

Once you've done all of the above steps, it's time to [move on](configuration.md) to configuring the actual ingestion source within DataHub.
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`---`
			`title: Setup`
			`---`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`# PowerBI Ingestion Guide: Setup & Prerequisites`

			`In order to configure ingestion from PowerBI, you'll first have to ensure you have an Azure AD app with permission to access the PowerBI resources.`

			`## PowerBI Prerequisites`

			`1. Create an Azure AD app: Follow below steps to create an Azure AD app`

			`a. Login to https://portal.azure.com`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			b. Go to `Azure Active Directory`

			c. Navigate to `App registrations`

			d. Click on `+ New registration`

			e. On `Register an application` window fill the `Name` of application says `powerbi-app-connector` and keep other default as is

			`<p align="center">`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			`<img width="75%" alt="app_registration" src="http://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/app-registration.png"/>`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`</p>`

			f. On `Register an application` window click on `Register`

			g. The Azure portal will open up the `powerbi-app-connector` window as shown below. On this screen note down the `Application (client) ID` and click on `Add a certificate or secret` to generate a secret for the `Application (client) ID`

			`<p align="center">`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			`<img width="75%" alt="powerbi_app_connector" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/powerbi-connector-window.png"/>`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`</p>`

fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			f. On `powerbi-connector-app \| Certificates & secrets` window generate the client secret and note down the `Secret`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30
			2. Create an Azure AD Security Group: You need to add the `Azure AD app` into the security group to control resource permissions for the `Azure AD app`. Follow below steps to create an Azure AD Security Group.

			a. Go to `Azure Active Directory`

			b. Navigate to `Groups` and click on `New group`

			c. On `New group` window fill out the `Group type`,  `Group name`,  `Group description`.  `Group type` should be set to `Security` .   `New group` window is shown in below screenshot.

			`<p align="center">`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			`<img width="75%" alt="powerbi_app_connector" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/new-group-window.png"/>`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`</p>`

fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			d. On `New group` window click on `No members selected` and add `Azure AD app` i.e. _powerbi-connector-app_ as member
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30
			f. On `New group` window click on `Create` to create the security group `powerbi-connector-app-security-group`.

fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			`3. Assign privileges to powerbi-connector-app-security-group: You need to add the created security group into PowerBI portal to grant resource access. Follow below steps to assign privileges to your security group.`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30
			`a. Login to https://app.powerbi.com/`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			b. Go to `Settings` -> `Admin Portal`

			c. On `Admin Portal` navigate to `Tenant settings` as shown in below screenshot.

			`<p align="center">`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			`<img width="75%" alt="powerbi_admin_portal" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/powerbi-admin-portal.png"/>`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`</p>`

fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			d. Enable PowerBI API: Under `Tenant settings` -> `Developer settings` -> `Allow service principals to use Power BI APIs` add the previously created security group i.e. _powerbi-connector-app-security-group_ into `Specific security groups (Recommended)`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			e. Enable Admin API Settings: Under `Tenant settings` -> `Admin API settings` enable the following options

			- `Allow service principals to use read-only admin APIs`
			- `Enhance admin APIs responses with detailed metadata`
			- `Enhance admin APIs responses with DAX and mashup expressions`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30
ci(graphql,workflows): Format .md, .graphql, and workflow .yml files via prettier (#13220) 2025-04-16 16:55:51 -07:00			f. Add Security Group to Workspace: Navigate to `Workspaces` window and open workspace which you want to ingest as shown in below screenshot and click on `Access` and add `powerbi-connector-app-security-group` as member. For most cases `Viewer` role is enough, but for profiling the `Contributor` role is required.
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30
			`<p align="center">`
fix: Fix broken links on PowerBI (#7959) Co-authored-by: socar-dini <dini@socar.kr> 2023-05-04 15:07:15 +09:00			`<img width="75%" alt="workspace-window-underlined" src="https://raw.githubusercontent.com/datahub-project/static-assets/main/imgs/guides/powerbi/workspace-window-undrlined.png"/>`
doc(ingestion): powerbi quick ingestion guide (#7670) Co-authored-by: MohdSiddiqueBagwan <mohdsiddique.bagwan@gslab.com> Co-authored-by: John Joyce <john@acryl.io> 2023-04-13 00:28:26 +05:30			`</p>`

			`## Next Steps`

			`Once you've done all of the above steps, it's time to [move on](configuration.md) to configuring the actual ingestion source within DataHub.`