PowerBI
Seemore natively supports PowerBI, which allows you to seamlessly integrate your PowerBi with your Seemore workspace.
Register application in Microsoft Entra ID
Log in to the Azure portal: https://portal.azure.com/
Open the menu and click Azure Active Directory.
In the left menu, under the Manage section, click App Registrations.
At the top of the page, click the New registration button.
In the resulting page, enter the following information:
For Name enter a name for the integration. For example, Seemore
owerBIIntegration
.For Supported account types select Accounts in this organizational directory only (<directory> only - Single tenant).
At the bottom of the page, click the Register button.
Client secret
In the left menu of the app registration, under the Manage section, click Certificates & secrets.
Under the Client secrets tab, click the New client secret button.
Enter a description and set the expiration.
At the bottom of the page click the Add button.
For your create secret, under the Value column, click the copy icon to copy the secret value.
Security group
Open the menu and click Azure Active Directory.
In the left menu, under the Manage section, click Groups.
At the top of the page, click the New group button.
Set the Group type to Security.
Enter a Group name and (optionally) a Group description.
Under Members click the No members selected link.
Add the appropriate member:
For Delegated User authentication: search for the user and select it.
For Service Principal authentication: search for the application registration created earlier and select it.
Click Select and then Create.
By the end of these steps, you have registered an application with Microsoft Entra ID and created a Security Group with the appropriate member.
Configure authentication options
Seemore supports two authentication methods for fetching metadata from Microsoft Power BI:
Service principal authentication (recommended)
When using Service Principal authentication, you must decide how the connector shall access metadata to catalog assets and build lineage. There are two supported options:
Admin API
This option grants permissions that let the service principal to access only admin-level Power BI APIs. In this mode, Seemore extracts metadata exclusively using administrative endpoints. This option is recommended for stricter access control environments.
Log in to the Power BI admin portal: https://app.powerbi.com/admin-portal
From the menu under Admin portal click Tenant settings.
Under the Developer settings heading, expand the Allow service principals to use Power BI APIs expandable and ensure this is Enabled.
Under Specific security groups (Recommended) add the security group created above.
At the bottom of the expanded section click the Apply button.
Under the Admin API settings heading, expand the Allow service principals to use read-only Power BI admin APIs expandable and ensure this is Enabled.
Under Specific security groups add the security group created above.
At the bottom of the expanded section click the Apply button.
Still under the Admin API settings heading, expand the Enhance admin APIs responses with detailed metadata expandable and ensure this is Enabled.
Under Specific security groups add the security group created above.
At the bottom of the expanded section click the Apply button.
Still under the Admin API settings heading, expand the Enhance admin APIs responses with DAX and mashup expressions expandable and ensure this is Enabled.
Under Specific security groups add the security group created above.
At the bottom of the expanded section click the Apply button.
Configure Admin and Non-Admin API Access in PowerBI Service Portal
To enable both admin and non-admin API access:
Log in to the Power BI admin portal.
Click Tenant settings under Admin portal.
Under Developer settings:
Expand Service principals can use Fabric APIs and set to Enabled.
Add your security group under Specific security groups.
Click Apply.
Under Admin API settings:
Expand Enable service principals to use read-only Power BI admin APIs and set to Enabled.
Add your security group.
Click Apply.
Expand Enhance admin APIs responses with detailed metadata and set to Enabled.
Add your security group.
Click Apply.
Expand Enhance admin APIs responses with DAX and mashup expressions and set to Enabled.
Add your security group.
Click Apply.
After making these changes, you typically need to wait 15-30 minutes for the settings to take effect across Microsoft's services.
Service principal as a workspace viewer
Log in to the Power BI portal and go to the homepage.
From the menu on the left, open Workspaces and then the workspace you want to access from Seemore.
Above the table, click the Access button.
In the resulting panel:
Inside the text box that says Enter email addresses enter the name of the security group you created above.
Change the drop-down below this to Viewer.
Below the drop-down, click the Add button.
Delegated user authentication
Adding Permissions:
In your app’s dashboard, go to API permissions from the left-side menu.

Click "Add a permission".
Add Power BI Service Permissions
Select "Power BI Service" from the Microsoft APIs list.
Under Delegated permissions, add the following:
Tenant.Read.All
Click Add permissions.
Add Microsoft Graph Permissions
Go back to "Add a permission".
Select Microsoft Graph.

Under Application permissions, add the following:
Directory.Read.All
under Directory.User.Read.All
under User.Click
Add permissions
.
Grant Admin Consent
After adding the permissions, an Admin Consent button may appear
Click Grant admin consent to finalize the configuration.
Note: Ensure that the service principal and the security group have been set up and configured properly to avoid access issues when using the Power BI APIs and workspaces.
Verify Permissions
Go back to the API permissions page.
Ensure the permissions list includes:
Power BI Service:
Tenant.Read.All
Microsoft Graph:
Directory.Read.All
andUser.Read.All
Confirm the status shows that admin consent has been granted if needed.
Admin API settings configuration
To enable the Microsoft Power BI admin API:
Log in to the Power BI admin portal.
Click Tenant settings under Admin portal.
Under Admin API settings:
Expand Enhance admin APIs responses with detailed metadata and set to Enabled
Add your security group
Click Apply
Expand Enhance admin APIs responses with DAX and mashup expressions and set to Enabled
Add your security group
Click Apply.
Last updated