Answer-first summary for fast verification
Answer: Create a hidden measure for 'Net Profit' and configure object-level security to grant access only to the 'Finance Manager' role.
Creating a hidden measure and configuring object-level security is the most efficient and effective approach to restrict access to a specific measure based on user roles. This method directly addresses the requirement by allowing only the 'Finance Manager' role to access the 'Net Profit' measure without the need for multiple semantic models or complex DAX expressions. Row-level security (RLS) is not suitable for object-level restrictions, and creating separate semantic models would increase administrative overhead. Using DAX to dynamically display the measure based on the user's role could work but is less straightforward and more prone to errors than using object-level security.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You are designing a semantic model for a financial reporting application in Microsoft Fabric. The application requires that access to a specific financial measure, 'Net Profit', be restricted based on the user's role within the organization. The solution must ensure that only users with the 'Finance Manager' role can view the 'Net Profit' measure, while other roles should not see this measure in their reports. Additionally, the solution should minimize administrative overhead and not require the creation of multiple semantic models. Which of the following approaches BEST meets these requirements? (Choose one option.)
A
Implement row-level security (RLS) to filter data based on the user's role, ensuring only 'Finance Managers' can see rows containing 'Net Profit'.
B
Use DAX to create a dynamic measure that checks the user's role and displays 'Net Profit' only for 'Finance Managers'.
C
Create a separate semantic model for each user role, including one that contains the 'Net Profit' measure for 'Finance Managers'.
D
Create a hidden measure for 'Net Profit' and configure object-level security to grant access only to the 'Finance Manager' role.