Setup takes about 15-20 minutes.
Introduction
Connecting Power BI to Foundational allows Foundational to determine lineage and list all the entities/assets in Power BI workspaces.
To make the connection, you need to:
Create a Tenant ID and Client Secret in Microsoft Entra ID
Assign Power BI Admin API permissions
Set up the connection in Foundational using your Tenant ID and Client Secret
Prerequisites
Ensure you have:
Azure admin rights
An active Power BI service connection
Added Foundational IP addresses to the allowlist - see the article Allowing IP access to Foundational
Create a Tenant ID and Client Secret
Step 1: Register an application in Microsoft Azure
Step 1: Register an application in Microsoft Azure
Open: https://portal.azure.com.
Sign in with your Power BI login.
From Azure Services, select Microsoft Entra ID.
This opens the Microsoft Azure Home page.
From the navigation pane, select App registrations, then click New registration.
At the Register an application screen enter a name and accept the default options.
Click Register.
The next screen displays your Application (client) ID (#1) and Directory (tenant) ID (#2). Copy and store both. You’ll need them later.
Select Add a certificate or secret (#3) and enter the details:
Description: power-bi-foundational-connector
Expiry: Select 24 months
Click Add.
Copy the Secret value and Secret ID. Microsoft will not display the value again.
Step 2: Create a new Azure Active Directory security group
Step 2: Create a new Azure Active Directory security group
From the Home page menu pane, select Groups.
Click New Group.
Enter these details:
Group type: Security (#1)
Group name: power-bi-foundational-connector-security-group (#2)
Click No members selected (#3). A screen opens to add members.
Select power-bi-foundational-connector-security-group (#3) as a member.
Click Select to add the group as a member.
To complete, click Create.
The next part of the connection process assigns admin permissions in Power BI.
Assign Power BI Admin permissions
Step 1: Enable permissions
Step 1: Enable permissions
Open https://app.powerbi.com.
From Settings, go to Admin portal > Tenant settings.
Scroll to find Developer settings and enable the setting Service principals can call Fabric public APIs.
Activate the Enabled toggle (#1).
Add power-bi-foundational-connector-security-group as a specific security group (#2).
Click Apply (#3).
Next, scroll to find Admin API settings and enable two settings.
Enable Enhance admin APIs responses with detailed metadata.
Activate the Enabled toggle (#1).
Add power-bi-foundational-connector-security-group as a specific security group (#2).
Click Apply (#3).
Enable Enhance admin APIs responses with DAX and mashup expressions.
Some Power BI queries use DAX and mashup expressions to read data.
Activate the Enabled toggle (#1).
Add power-bi-foundational-connector-security-group as a specific security group (#2).
Click Apply (#3).
Step 2: Add the security group to Power BI workspaces
Step 2: Add the security group to Power BI workspaces
This step adds Foundational to each workspace you want Foundational to access.
In Power BI, open the first target workspace.
Click the *** 3 dots and add power-bi-foundational-connector-security-group to the list of users with the Viewer role.
Repeat for each Power BI workspace you want Foundational to access.
You’re now ready to connect Foundational to your Power BI workspaces.
Connect Foundational to Power BI
Open the Integrations and Connectors page in Foundational.
In the BI & Analytics section, select the Power BI card and click Connect.
The initial setup screen opens. Click Start Setup.
The Setup New Connection screen opens.
Enter your Microsoft Entra ID credentials:
Tenant ID
Client ID
Client Secret
Click Next. The screen displays the account connection.
That’s it. Foundational is now connected to your Power BI workspace.