The Power BI Setting That Makes Semantic Models Safer
Microsoft has introduced Outbound Access Protection for Power BI semantic models, enhancing security by treating these models as part of the data movement boundary. This feature blocks outbound public access by default, requiring explicit permission for connections to external destinations. The change shifts the focus of governance from merely who can access reports to where models are allowed to connect.
- ▪Outbound Access Protection is a workspace-level control in Microsoft Fabric that blocks outbound public access by default.
- ▪The enforcement of this protection occurs on the model's bound data connection, ensuring stronger control over data movement.
- ▪This new setting requires a shift in the review process to include questions about allowed outbound destinations and their necessity.
Opening excerpt (first ~120 words) tap to expand
try { if(localStorage) { let currentUser = localStorage.getItem('current_user'); if (currentUser) { currentUser = JSON.parse(currentUser); if (currentUser.id === 3940157) { document.getElementById('article-show-container').classList.add('current-user-is-article-author'); } } } } catch (e) { console.error(e); } Shai Karmani Posted on May 20 • Originally published at shai-kr.github.io The Power BI Setting That Makes Semantic Models Safer #powerbi #microsoftfabric #governance #security Originally published at https://shai-kr.github.io/data-ninja-ai-lab/blog/2026-05-19-outbound-access-protection-semantic-models.html. Most Power BI security conversations stop at the report. Who can open it? Which workspace is it in? Which RLS role applies? Can users export data? Those questions still matter.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at DEV.to (Top).
Discussion
0 commentsMore from DEV.to (Top)
