I am trying to give access to a PowerBI(PBI) workspace for an Active Directory(AD) group comprised of few users. When users login to PBI service, they cant see the workspace. The type of the AD group where these users are, set as a Distribution List. There is another separate workspace I created where users in an AD group with type - Mail Enabled Security. Those users can see that Workspace with no issues. Level of permission the AD group was given for this Distribution list PBI workspace was - Viewer. When the users are individually added to this workspace, they can see the workspace. Could someone kindly confirm, if the AD group type has to be a - Mail Enabled Security for the users to see the PowerBI workspace?
According to PowerBI documentation, PBI Workspace also supports AD groups of the type, Distribution List.
See the link
https://learn.microsoft.com/en-us/power-bi/admin/service-admin-rls
Thank you for your replies. Much appreciated.
enter image description here
Edited: Hi Andrey, I added an extra image. This I got from a posting in a blog post. It's confusing whether the group has to be security group or a distribution lists are also allowed under PBI workspaces. According to this image, distribution lists are also allowed.
Also want to add that PBI workspace here was created as new workspace type not the Classic type. Under the point 2 in the link, what that images says confirms by the Microsoft PBI documentation.
https://learn.microsoft.com/en-us/power-bi/collaborate-share/service-give-access-new-workspaces
In order to make it simple, I didn't mention the fact that these groups are being used to access couple of reports inside the workspace. These reports use roles that maintain Row Level Security. I thought it would still show the users in the group the workspace even though they might not get access to the individual reports inside. Am I too optimistic here?
Edit 2:
Thank you everyone. The issue has been resolved without me doing anything. It was a delay in syncing the changes within the office365/AD accounts/PowerBI it seems. Just for the record I will leave this post here hoping it might help someone with my situation in the future.
Related
Rookie S3 user here looking to troubleshoot a problem I encountered while helping some friends with their business. Their business revolves around selling courses and the program they use is WooCommerce and they attach course files through WordPress. The way these courses work is that there is a live video call where people like to join in so the product on WooCommerce initially holds the details for the upcoming call and afterward additional audio and transcripts are added to the product for sale. The problem is that this means people who had bought the course prior to this call would not receive these files unless permission to see them was manually given. As this is redundant and troublesome, my thought was to change the purchase to instead give a link which goes into an Amazon S3 bucket labeled courses and give them access to a specific folder within it. Ideally, this link would let them see new files lives and furthermore would limit the size of data on the website which is hosted on a dedicated server (save some $$$ on hosting fees, 2 birds 1 stone) The problem however is that since I am a complete novice to this style of coding, I am unsure of how to do this although I do think it is possible given an answer is already out there or if I can bull and jam my way through a section of code. The reason I am looking to sort out courses as folders inside a bucket instead of individual buckets is that the number of courses the website currently has is nearing 200 and if an effort was made to change those then it would be well over the 100 bucket limit in addition to being an exercise in repetition. Any advice or help would be greatly appreciated, thanks!
If I understand you correctly, you want to host content on S3, but want to achieve some degree of access control on that content.
The most straightforward way to do this, the one that involves minimal S3 integration, is to presign an S3 url for the user. the presigned url would be good for a limited time and could be generated directly before redirecting the user to that URL by your wordpress site, which would in turn hold aws access credentials.
https://docs.amazonaws.cn/zh_cn/aws-sdk-php/guide/latest/service/s3-presigned-url.html eplains more about this from a php perspective, which I'm guessing is the right lens for you.
This allows some modicum of access control ( the users can still share the document after they've accessed it, but at least it's not just public).
If you don't need access control, you can make the s3 object public and omit the signing altogether.
Asking here, after asking to Clockify support.
Trying to extend some of clockify capabilities to create extra reporting for our clients,
I’ve been playing with your API and specifically: the enpoint /reports/{reportsId}
• My goal:
Get all the time entries of a specific "saved report” (usually saved by our Project Managers)
• What I EXPECT from "/reports/{reportsId}”:
To get all the info and entities (users, time entries, projects, etc.) only regarding that particular reportId
• What I GET from "/reports/{reportsId}”:
Lots of info regarding the whole workspace, and I only see summaryReport
as more “specific to the saved report itself”...
• Questions:
Is this the correct behavior?
How do you filter down time entries of specific reports in URLs like https://clockify.me/bookmarks/BOOKMARK_HASH_HERE ?
Do you only call "/reports/{reportsId}” and filter down on client-side? (it seems to me that way, exploring the Network tab)
If that’s the way, what’s the point of calling the report endpoint? Only for the summaryReport object?
3- Is "/reports/{reportsId}” the best endpoint I can use to reach my goal? …or which way would you recommend me?
summaryReport.timeEntries will contain all the individual time entries from that particular report. Each entry has a user, project, client, time etc. Grouping by project is done on the client.
I'm not sure I fully understand your specific problem though. Are you suggesting the entries you get from the report endpoint do not belong to the given report?
Initially, I had created a case to report a problem with credentials assignment to Cloudant. But, after a few iterations with support, I am no longer able to view my own case via the link I get in the support e-mail.
I only get a message You do not have the right permissions to view cases.
So, I try to open a new case - but then I get You do not have the right permissions to open cases and a description telling me what to do.
Following the steps (Creating an access group for working with cases), I'm able to follow the first steps (From the menu bar, go to Manage > Access (IAM), select Access groups, and click Create), but at the Access Groups page, there is no Create button or any way to create a new access group.
So, I'm not even able to ask for support any more...
You can always open support cases via email to support#cloudant.com - if you provide your Cloudant account name (the one that ends with -bluemix) it’s easier for support to locate you.
You still have a -bluemix account - look at the URL when opening the Cloudant dashboard. Here’s an instance I just created using my internal IBM creds...
https://5217efab-4dcf-4ea0-a1c7-a0ea017a8ccd-bluemix.cloudant.com
We were checking newly implemented Google Analytics for our mobile app and surprisingly there are a lot of visitors from multiple countries but in actuality, we haven't released our app for any store and it's just beta between 5 main users.
After checking Google Analytics report in details we have found that it got spammed by Bot call "Trumps Bot" when something happens on your account you can see following lines in your language section.
“Secret.ɢoogle.com You are invited! Enter only with this ticket URL. Copy it. Vote for Trump!”
There are a lot of solution available to avoid this data in your reports using the filter but i was just wondering if there is any concrete solution on permanently remove this data from my reports and also is there anything we can do to avoid such data in future as its seriously affecting business strategy.
Due the tecnology used on Google Analytics the only way to eliminate this referal is using a filter, check one common point of all this hits . In this case is a hard one, because all the parameters changes , exept for the language, for a well know reason, to see the spam.
So try to use this one, in my case works
I highly recommend you read the community policy, this can be considered as off-topic question
Analytics spammers are always trying to find new ways of getting attention, and with this one, this spammer hit it big.
It is not possible to permanently remove it unless you delete the whole property. But you can create and advance segment to get a clean view.
But the most important part is blocking it so it doesn't pollutes your data. For this particular type of spam you should create a custom exclude language filter with this expression:
\s[^s]*\s|.{15,}|.|,
That expression will block any hit that doesn't use a proper language. That combined with a valid hostname filter should prevent most of the current spam and save you a lot of headaches.
If you need help, you can check this step by step guide for building these filters and creating the advanced segment to remove it from your historical data.
Here is also a related question.
Login in to Your Google Analytics account
Select ADMIN Section
Click on All Filters -- Add Filters
Give a filter name such as -- Include only website traffic
In Predefined section, select Include Only
for more... Click Here
For historical reasons some profiles were set up under one account. At a later time new sites were added in their own accounts. I am wanting to move some profiles out from under the account they are currently under and into their own accounts. I cannot figure out how to do this and have scoured the help files looking for how this is accomplished. Anyone know if it's possible?
I don't believe what you're trying to accomplish is possible. You collect data under a unique ID (UA - ID) this is called a property. Off of that property you can build profiles to view a subset of data. Profile can be recreated under a new property, but it wouldn't have any historical data.
For more info, you can check out - https://developers.google.com/analytics/resources/concepts/gaConceptsAccounts