Admin Permissions Required

security

In order for Sentinel to backup your Power BI documents, and scan your tenant to generate documentation, data lineage and audit logs, it is necessary to request permission for Sentinel to access your Power BI tenant's API.

There are two levels of access that you can choose from:

Full access

This is the recommended approach, and will give you full access to all Sentinel functionality.

To access this, use 'Portal' at https://portal.PowerBISentinel.com

This access can only be granted by an Office 365 Global Administrator so you will need to get a Admin to grant this using the above link before you sign up to Sentinel, this is a one-off task.

The process is:

  1. Ask your o365 Global Admin to authorize Sentinel by signing in at https://portal.powerbisentinel.com
  2. If you are shown a tick box asking to provide "consent on behalf of your organisation", please select it. This enables other users in your organisation to use Sentinel, and may be shown in some tenants. This only needs to happen once.
  3. You can then log into the same portal and sign up for Sentinel https://portal.powerbisentinel.com

This only needs to be done once.

Note that all of the permissions requested ONLY apply to PowerBI, and not your entire organisation, despite the ambiguous wording in the request message.

For more details about Microsoft Consent, please see Microsoft's consent explanation page here.

For details about Power BI Service Administrators, please see this page

Limited access

To access this, use 'My Sentinel' at https://my.PowerBISentinel.com

This allows you to access Power BI Sentinel functionality, but is limited in a number of ways, including:

  • No audit/usage logs
  • Limited scalability due to slower API interaction with Power BI

When you first sign in, you will be presented with the list of permissions in the following screenshot.

This only needs to be done once.

Why are permissions requested by Purple Frog Systems?

Power BI Sentinel is a service created and run by Purple Frog Systems Ltd, a Business Intelligence consultancy with over a decade of experience helping large global organisations with their Microsoft Data Platform analytics needs. Power BI Sentinel is a brand name that operates within the Purple Frog company, and it is hosted in Azure, within the Purple Frog tenant.

Power BI Sentinel is a shared SaaS platform that is hosted outside of your Azure/o365 tenant. Sentinel therefore needs to request permission in order to give you access to the information it generates.

What happens if I don't grant permissions?

In order for Sentinel to work it has to have access to your Power BI tenant.

It is however up to you which of the above permission levels you grant the application, we strongly recommend the full access.

If you would like to discuss any of this further, please get in touch with us.