Publish to web – Admin Edition

Publiziert am 25. Juni 2020 von Kathrin Borchert

Hi together,

are you familiar with the “Publish to Web” feature in your Power BI service?

No?

Are you the Power BI Admin in your organization?

Yes!

Ok, than let’s talk immediately!

If you arn’t familliar with this function here some hard facts:

If you publish a report to the web your data is on the web!

May be this messages are looking famillar to you:

This is the first message you get If you like to publish something to web.


And this is the second message you get.



Now let’s be honest do you read this messages or a better question would you read this messages If you look at them? I suppose not! And why could this be? I think it’s easy to aswer because it look like every other message. There’s nothing there that makes me think I’m doing something that could be bad. And that’s exactly the point. Ruth recently published a very good video

In this video Ruth descirbes why you shouldn’t enable this feature for the whole organization. The most important sentence was ” A simple google search will reveal 25,500 public Power BI reports and not all of them should be public. ”

My blog post will shortly explain “How a admin can be informed immediately if someone in his organization use this function?” If you have the approach of a managed self service and you’re organization want to leave this feature on you can use this instruction very easy to set up a notification alert.

The goal of this blog post is to be informed immediately when a report with sensitive data is published.

In generell I would rather recommend to create a security group for this feature and only allow people which are aware of this powerful function. You can configure this feature in the Power BI Service Admin Portal.

Requirements:

Audit Logs in Power BI Admin Portal can be activated here:

You have to be assigned the View-Only Audit Logs or Audit Logs role in Exchange Online to search the audit log .

Activity Notification can be found in the protection center (https://protection.office.com/managealerts

If you are in the Auditlog Role will be enough to set up the notification alert.

The result you get after you set up the whole thing you will get this:

The email adresses are only demo adresses.



Also you will get this too:

This information you can analyze in Power BI and build a nice little montioring report. If you put the excel file in One Drive or Sharepoint the data can be refreshed very simple.

If you like to see the whole instruction please download it here. (German Edition here)

You can also download the Power Automate template here. (German Edition here)

What do you think? Would you use it in your own organization?

Let me know what you think and have fun with the instruction, If you have any question please let me know.

Best,

Kathrin

Dieser Beitrag wurde unter Allgemein, Governance, Power BI veröffentlicht. Setze ein Lesezeichen auf den Permalink.

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert