- 22
- 21 948
Dharmendra Keshari
Singapore
Приєднався 3 жов 2011
I specialize in assisting both novice and seasoned data professionals in mastering Microsoft Fabric and SQL Server. Most of the videos are based on concepts published on www.dharmendrakeshari.com/
Data Access Control: Object Level Permissions for Security & Governance in Microsoft Fabric
In this concise tutorial video, I walk you through Data Access Control - Object Level Permissions (aka as Compute permissions) in Microsoft Fabric. We explore how to set granular data permissions within Fabric's compute engine, focusing on the SQL endpoint and semantic models.
The SQL endpoint provides direct SQL access to tables in OneLake and allows for native security configuration through SQL commands, ensuring specific control over table and row-level security for SQL queries. Semantic models enable security to be defined using DAX, applying restrictions to users querying through the semantic model or using Power BI reports built on it. Don't hesitate to leave your questions in the comments, and feel free to share your UA-cam uploads. Cheers!
#microsoftfabric #permissions #objects #fabricsecurity #fabric #msfabric #microsoft #fabricator #DataAnalytics #ai #microsoft #security #powerbi #datawarehouse #lakehouse #dataengineering #datafactory #dataactivator #datascience
For additional content, you can also explore my blog - www.dharmendrakeshari.com/
Data Access Control: Workspace Roles for Security & Governance in Microsoft Fabric: ua-cam.com/video/l0pAlBrupRI/v-deo.html
Data Access Control: Item permissions for Security & Governance in Microsoft Fabric: ua-cam.com/video/gzmln7ONVyk/v-deo.html
Additional References: learn.microsoft.com/en-us/fabric/security/permission-model
The SQL endpoint provides direct SQL access to tables in OneLake and allows for native security configuration through SQL commands, ensuring specific control over table and row-level security for SQL queries. Semantic models enable security to be defined using DAX, applying restrictions to users querying through the semantic model or using Power BI reports built on it. Don't hesitate to leave your questions in the comments, and feel free to share your UA-cam uploads. Cheers!
#microsoftfabric #permissions #objects #fabricsecurity #fabric #msfabric #microsoft #fabricator #DataAnalytics #ai #microsoft #security #powerbi #datawarehouse #lakehouse #dataengineering #datafactory #dataactivator #datascience
For additional content, you can also explore my blog - www.dharmendrakeshari.com/
Data Access Control: Workspace Roles for Security & Governance in Microsoft Fabric: ua-cam.com/video/l0pAlBrupRI/v-deo.html
Data Access Control: Item permissions for Security & Governance in Microsoft Fabric: ua-cam.com/video/gzmln7ONVyk/v-deo.html
Additional References: learn.microsoft.com/en-us/fabric/security/permission-model
Переглядів: 651
Відео
Data Access Control: Item permissions for Security & Governance in Microsoft Fabric
Переглядів 8324 місяці тому
In this concise tutorial video, I walk you through Data Access Control - Item Permissions in Microsoft Fabric. How the Item permissions let you adjust access for specific items, overriding workspace roles if needed. Easily share items with users or groups, choosing permissions during sharing. Don't hesitate to leave your questions in the comments, and feel free to share your UA-cam uploads. Che...
Data Access Control: Workspace Roles for Security & Governance in Microsoft Fabric
Переглядів 8376 місяців тому
In this short step-by-step tutorial video, I've explained Data Access Control in Microsoft Fabric - Workspace Roles. How these roles can help development teams to collaborate within a workspace. Let me know if you have any questions in the comments. Also, feel free to share any videos that you upload to UA-cam in the comments section below. Cheers!
Microsoft Fabric Network Security Feature - Workspace Identity : Setup and Considerations
Переглядів 1,6 тис.7 місяців тому
In this concise tutorial video, I've outlined the process for securely setting up and accessing data using Workspace Identity in Microsoft Fabric. I also explain in detailed how Workspace Identity works. Let me know if you have any questions in the comments. Also, feel free to share any videos that you upload to UA-cam in the comments section below. Cheers! For additional content, you can also ...
Managed Private Endpoints in Microsoft Fabric: Setup and Considerations
Переглядів 1,1 тис.7 місяців тому
In this short step-by-step tutorial video, I've explained how you can setup and access the data securely with Managed Private Endpoints in Microsoft Fabric. Let me know if you have any questions in the comments. Also, feel free to share any videos that you upload to UA-cam in the comments section below. Cheers! For additional content, you can also explore my blog - www.dharmendrakeshari.com/
Transactional Replication - Add a new article (without initializing old articles)
Переглядів 6 тис.7 років тому
www.dharmendrakeshari.com/add-new-articles-existing-transactional-replication-without-initializing-old-articles/
Capture Important Parameters of the SQL Server Replication
Переглядів 4457 років тому
Capture Important Parameters of the SQL Server Replication
SQL SERVER DATABASE FILES WISE IO LATENCY DETAILS
Переглядів 1,3 тис.7 років тому
SQL SERVER DATABASE FILES WISE IO LATENCY DETAILS
How the Initial VLF sequence number gets decided of the default transaction log file
Переглядів 3047 років тому
How the Initial VLF sequence number gets decided of the default transaction log file
Log File Space Issue Monitoring Using SQL SERVER DMV
Переглядів 2 тис.7 років тому
Log File Space Issue Monitoring Using SQL SERVER DMV
SQL Database File Wise Disk Space Monitoring
Переглядів 5097 років тому
SQL Database File Wise Disk Space Monitoring
Disk Space Monitoring using SQL Server DMV
Переглядів 4,4 тис.7 років тому
Disk Space Monitoring using SQL Server DMV
Can I not grant OLS for individual tables (without semantic model) using tabular editor?
If you want to restrict access to individual tables in a semantic model, your only option is to use the semantic model itself. However, if you need to grant access to a specific table for a user accessing it through the warehouse or lakehouse, you can do so without using the semantic model.
@@KeshariDharmendrathanks but my main question was about Tabular Editor having that ability
Very interesting and well explained, congratulations
you are awesome thank you!
very informative..thanks for explaining it so well
Very good information 👍
please put more such useful videos
Great video with explanations. Even with the correct GRANT statements to alter the SQL endpoint permissions, a user cannot seem to create VIEWS on a user specific or main dbo schema? does this seem right? A user can perform many DML operations but not create VIEWS?
@rameshpaskarathas6512, did you see any error?
@@KeshariDharmendra.I get an error below: " Error Details The view could not be created because of the following error. Error Code InternalError Message An internal error occurred."
That is an awesome video!! Kudos!
Very informative tutorial on Fabric!!
I created some roles in through SQL queries in my lakehouse, I then granted this role to people and they had access to only the tables they should. However, when I woke up my pipelines that overwrite, replace or drop tables to bring in new data had all removed the roles of the people and they had nothing again? Is this how it's supposed to work?
Replace and drop will remove the access instead give access at schema level. GRANT SELECT ON schema:dbo to xyz;
@@KeshariDharmendra Thank you, I was surprised that "Copy data activity" with Overwrite as table action also removed access but it hopefully won't be a problem if I do it at schema level.
@@William-Liljedahl Yes, I am assuming that it should work. If it doesn't, we can think of creating another SP activity in the pipeline to give permission
Very nicely done, thanks Dharmendra!
Thank you Will!
Very informative tutorial!!
This is the most robust demonstration of this feature I have seen. Thank you. It is a shame that it is not available in P-SKUs.
Very good information!!
Very informative!!
Where is the the script which you shown in video to validate articles?
you can follow here www.dharmendrakeshari.com/add-new-articles-existing-transactional-replication-without-initializing-old-articles/
Great video. Could not find the slidest you used on your blog. Is it there as well br
@Daniel, I haven't finished writing my blog, I will update once I finish writing it.
what should we do reduce this?how can we balance it?
Great share! I found one helpful article related to this. The blog discusses how to implement SQL Server disk space and implement alert system: www.sqlserverlogexplorer.com/monitor-sql-server-disk-space-and-implement-alert/ Keep Reading!
You didnt show how to set immediate sync\allow anonymous to zero: EXEC sp_changepublication @publication = 'Forest', @property = N'allow_anonymous', @value = 'false' GO EXEC sp_changepublication @publication = 'Forest', @property = N'immediate_sync', @value = 'false' GO
Hello, am I right to alter the properties first on the affected publication before proceeding to add the articles right?
what is the reason it generate snapshot only for one table which is not in the subscriber? can you explain? to summarize I include the article first then generate snapshot? or there is/are some other step? thanks in advance.
you have to keep following properties disabled. otherwise old article will be regenerated on subscriber --Run on your publication database EXEC sp_changepublication @publication = 'test', --Enter your publication_name @property = 'allow_anonymous' , @value = 'false' GO EXEC sp_changepublication @publication = 'Test', --Enter your publication name @property = 'immediate_sync' , @value = 'false' GO -- then generate snapshot --then enable it back --Run on your publication database EXEC sp_changepublication @publication = 'test', --Enter your publication_name @property = 'allow_anonymous' , @value = 'true' GO EXEC sp_changepublication @publication = 'Test', --Enter your publication name @property = 'immediate_sync' , @value = 'true' GO