How to Grant Access to an Entire Azure AD Group in DWH Fabric?
I'm currently working with Microsoft DWH Fabric, and I need to grant read-only access to an entire Azure Active Directory (AAD) group. Specifically, I want to add the group to the db_datareader role in my database.
Here's what I tried so far:
I used the following SQL command to add the group:
ALTER ROLE db_datareader ADD MEMBER [group:group-id-or-name];
Unfortunately, I got the following error:
Principal 'group:group-id-or-name' could not be found or this principal type is not supported.
I verified that the group exists in Azure AD and tried using both the group's name and object ID, with and without prefixes like group:.
However, this did not resolve the issue either.
Fixed
The problem is that I passed the group ID, instead only the name was passed. So the correct code is ALTER ROLE db_datareader ADD MEMBER [GroupName];
Principal 'group:group-id-or-name' could not be found or this principal type is not supported.
Ensure you have enabled Service principals can use Fabric APIs in fabric workspace, otherwise you may get above error. This setting is located in the Developer settings section and is labeled Service principals can use Fabric APIs.
After that create a user of Active directory group and add role using below command:
ALTER ROLE db_datareader ADD MEMBER [<ADGroupName>];
you have mentioned [group:group-id-or-name] in your command, that may be the reason to get Principal 'group:group-id-or-name' could not be found. Along with that ensure you have provided correct group name. For more information, you can refer to below documents:
- Time Dimension: loading date
- How to Grant Access to an Entire Azure AD Group in DWH Fabric?
- Labor Day Vs. Thanksgiving
- Database vs DataMart vs Data Warehouse vs Data Lake
- What does "incremental load" mean?
- In a datawarehouse can a dimension be related to another dimension?
- Are these sex and demographic classifications part of the fact table or the dimension tables, with what other relevant fields?
- Create a near real time DWH with Pentaho Community edition
- How to handle multiple dimension records having the same name even though they have unique key/relation with the fact table (1:M)?
- SQL Query to calculate size of each schemas in Azure data warehouse and to find last access time?
- Extrapolating self-referencing keys from a hierarchy column
- Strategies for populating a Reporting/Data Warehouse database
- Using bitmap index in oracle db when many inserts/updates in single thread mode
- What is hybrid-columnar storage?
- Setting up Time Dimensions for Resolutions in a Star-Schema
- How to ETL my PostgreSQL data into a ClickHouse datawarehouse?
- Periodic Snapshot table design
- ElasticSearch how it works
- Why using sequence number against version number in dimension table by datawarehouse modeling
- SQL SSIS using Derived Column Transform to deal with null data.. alternatives?
- Why primary key is (not) required on fact table in dimensional modelling?
- Model the number of available spots in dimension or fact table?
- What is the most efficient way to generate a change data set given two SQL Server backup files?
- Power BI star (constellation) schema: 2 fact tables with relation between each other
- Representation of sequential rules in data mining (sequence pattern mining)
- How Do I aggregate Data By Day and Still Respect Timezone?
- How to track invoice/journal/lead status changes in Odoo for storing in data warehouse
- Many-to-many relationship database design
- Search Optimization Service in Snowflake is not used
- Difference between Fact table and Dimension table?