Skip to main content

    Power BI

    Needs Votes

    Assign Premium Capacity Admin Permissions to an AD Security Group rather than individual Users

    Vote (27) Share
    Jane Hunt's profile image

    Jane Hunt on 27 Sep 2018 16:26:33

    Under the Premium Capacity Settings, I can only assign the Capacity Admin to individual users. It does not allow me to assign this to an Active Directory Mail Enabled Security Group. For efficient security administration at an enterprise scale it would be preferable if Capacity Admin permissions could be managed through Active Directory Security Groups.

    Security Groups can be used to grant users assignment permissions, so why not for Capacity Admin - or is there a special reason for this?

    Comments (4)
    Jane Hunt's profile image Profile Picture

    Timofey Orentlikher on 19 Dec 2022 14:23:10

    RE: Assign Premium Capacity Admin Permissions to an AD Security Group rather than individual Users

    Hi PBI Team,This would be a very meaningful enhancement. As far as I can tell, Capacity Admins are the only area that can't leverage an AD Group and must be assigned individually currently. Not sure why this limitation exists.Thanks

    Jane Hunt's profile image Profile Picture

    Don Petry on 25 Nov 2020 21:23:36

    RE: Assign Premium Capacity Admin Permissions to an AD Security Group rather than individual Users

    Agreed with above comments. Group based management is a must to meet operational and security requirements. AAD groups must be supported here...

    Jane Hunt's profile image Profile Picture

    Power BI User on 05 Jul 2020 23:36:09

    RE: Assign Premium Capacity Admin Permissions to an AD Security Group rather than individual Users

    Hello Power BI Team,
    I'm at a global enterprise with 400k+ employees. I need a way to assign a security group as the capacity admin instead of named users because assigning named users is not compliant with our internal processes. We have an identity management system with workflows that assign users to security groups, in this case to the security group for Capacity Admins.
    It is possible to assign a security group in the section below about "users with assignment permissions" - implementation for the capacity admins should be similar (user OR security group).

    Thank you very much!

    Jane Hunt's profile image Profile Picture

    Benjamin Hanna on 05 Jul 2020 23:33:10

    RE: Assign Premium Capacity Admin Permissions to an AD Security Group rather than individual Users

    Active Directory security group
    Manage access through Active Directory security groups. A distribution list is only helpful to a point. Active directory is already used for so many things, having the ability to manage the security to dashboards and reports would be very helpful.

    I want to parrot this idea that was closed three years ago without implementation.