You have the Power BI model shown in the following exhibit.
A manager can represent only a single country.
You need to use row-level security (RLS) to meet the following requirements:
✑ The managers must only see the data of their respective country.
✑ The number of RLS roles must be minimized.
Which two actions should you perform? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
A. Create a single role that filters Country[Manager_Email] by using the USERNAME DAX function.
B. Create a single role that filters Country[Manager_Email] by using the USEROBJECTID DAX function.
C. For the relationship between Purchase Detail and Purchase, select Apply security filter in both directions.
D. Create one role for each country.
E. For the relationship between Purchase and Purchase Detail, change the Cross filter direction to Single.
Suggested Answer: AC
A: You can take advantage of the DAX functions username() or userprincipalname() within your dataset. You can use them within expressions in Power BI
Desktop. When you publish your model, it will be used within the Power BI service.
Note: To define security roles, follow these steps.
Import data into your Power BI Desktop report, or configure a DirectQuery connection.
1. From the Modeling tab, select Manage Roles.
2. From the Manage roles window, select Create.
3. Under Roles, provide a name for the role.
4. Under Tables, select the table to which you want to apply a DAX rule.
5. In the Table filter DAX expression box, enter the DAX expressions. This expression returns a value of true or false. For example: [Entity ID] = ג€Valueג€.
6. After you've created the DAX expression, select the checkmark above the expression box to validate the expression.
Note: You can use username() within this expression.
7. Select Save.
C: By default, row-level security filtering uses single-directional filters, whether the relationships are set to single direction or bi-directional. You can manually enable bi-directional cross-filtering with row-level security by selecting the relationship and checking the Apply security filter in both directions checkbox. Select this option when you've also implemented dynamic row-level security at the server level, where row-level security is based on username or login ID.
Reference:
https://docs.microsoft.com/en-us/power-bi/enterprise/service-admin-rls
This question is in PL-300 Microsoft Power BI Data Analyst Exam
For getting Microsoft Certified: Power BI Data Analyst Associate Certificate
Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Microsoft.
The website does not contain actual questions and answers from Microsoft's Certification Exams.
Trademarks, certification & product names are used for reference only and belong to Microsoft.
