Prerequisites and Permissions for DvSum Fabric Data Source Configuration

In this Article

Overview

Before configuring any Microsoft Fabric data source in DvSum, ensure that the required application setup and permissions are in place. This article outlines the required prerequisites and provides steps to create or verify them if not already available.

Prerequisites

To configure Fabric data sources, you must have the following:

  • An application registered in the Microsoft Azure Portal
  • A valid Client ID, Tenant ID, and Client Secret
  • Required API permissions granted to the application
  • Admin consent provided for the configured permissions
  • Access enabled for the application in Fabric (via Power BI Admin settings)

These requirements are necessary to allow DvSum to securely connect and access metadata from the configured data sources.

Setup Steps (If Not Already Configured)

If the above prerequisites are not already in place, follow the steps below to configure them.

App Registrations

  • Go to Microsoft Azure Portal 
  • Navigate to App registrations 
  • If no applications are listed, click View all applications in the directory

Registering a New Application

Click on New registration Enter the following:

  • Name: Provide a name for the application
  • Supported account types: Select Single tenant

Click Register

Creating a Client Secret

Navigate to Certificates & secrets Click + New client secret Enter:

  • Description
  • Expiration period

Click Add Copy the generated Secret Value immediately

Verifying the Token Configuration

  • Navigate to Token configuration from the left menu 
  • Verify required configurations (if applicable)

Access Permissions

Configure API Permissions (Azure)

  1. Go to API permissions
  2. Click Add a permission
  3. Add required permissions for:
    • Power BI Service
    • Microsoft Graph
  4. Click Grant admin consent

Ensure the permission status shows as granted.

Enable Fabric Access for All Supported Sources

  1. Open the Power BI Admin Portal
  2. Go to Tenant settings
  3. Navigate to Developer settings
  4. Enable:
    • Service principals can call Fabric public APIs (required to allow access across all supported sources such as Power BI, SQL Server, Lakehouse, and Warehouse)
  5. Under access scope:
    • Select Specific security groups
    • Add the security group associated with your application
  6. Click Apply

Applies to the Following Data Sources
The following configurations are generally required for:

These steps ensure that the application has the required access across all supported sources in the Fabric platform.

Additional Setup (Only for Dataverse)

Power Platform Environment

  • Open Power Platform Admin Center 
  • Navigate to Environments 
  • Select the required environment Ensure:
    • Environment is in Ready state
    • Dataverse is enabled
  • Select your environment (e.g., dvsum-dev-dataverse
  • Click Settings Under Users + permissions
  • select Application users

Application Users Page

You will see a list of existing application users like:

  • Microsoft Flow
  • Power Apps Checker Application
  • Fabric Workspace app

Here you can:

  • View App ID
  • Check State (Active)
  • See Security Roles
  • Check Business Unit

Adding New Application User

Click + New app user Search using:

  • Application Name, or
  • Application (Client) ID

Select the required application

Configuring Application User

After selecting the app, you must configure:

Required Fields:

  • Business Unit
    • Defines data access scope
  • Security Roles
    • VERY IMPORTANT — without roles, the app cannot access Dataverse

Optional:

  • Name (auto-filled usually)

Save

  • Click Add / Create

Now the application user will appear in the list.

Notes

  • Ensure you have appropriate access in Azure and Power Platform
  • Store all credentials securely (Client ID, Tenant ID, Client Secret)
  • Copy the client secret immediately after creation, as it will not be visible later

 

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.
Powered by Zendesk