The following page discusses the Microsoft Power BI® XMLA connector for data integration. If you are searching for information on the Power BI® connector to access Foundry resources from the Power Query interface, review our analytics connectivity documentation.
The Microsoft Power BI® XMLA connector is a Palantir-provided driver for Microsoft Power BI® XMLA.
To create a new Microsoft Power BI® XMLA source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for Microsoft Power BI® XMLA-specific configuration and networking. For the complete property reference, see the official Microsoft Power BI® XMLA driver documentation ↗.
The properties below are mandatory or recommended.
| Property | Required? | Description | Default |
|---|---|---|---|
AuthScheme ↗ | Recommended | The type of authentication to use when connecting to Microsoft Power BI XMLA. | AzureServicePrincipal |
AzureTenant ↗ | Recommended | Identifies the Microsoft Power BI XMLA tenant being used to access data. Accepts either the tenant's domain name (for example, contoso.onmicrosoft.com ) or its directory (tenant) ID. | — |
InitiateOAuth ↗ | Recommended | Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working. | GETANDREFRESH |
OAuthClientId ↗ | Recommended | Specifies the client ID (also known as the consumer key) assigned to your custom OAuth application. This ID is required to identify the application to the OAuth authorization server during authentication. | — |
OAuthClientSecret ↗ | Recommended | Specifies the client secret assigned to your custom OAuth application. This confidential value is used to authenticate the application to the OAuth authorization server. (Custom OAuth applications only.) | — |
PowerBIEnvironment ↗ | Recommended | Specifies the PowerBI environment to use for API requests. | NONE |
Workspace ↗ | Recommended | Specifies the Premium Power BI workspace(s) to connect to, using a comma-separated list of workspace names. | — |
The table below lists the domains that the source needs to be able to access in order to successfully run.
For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.
| Domain | Required |
|---|---|
| api.powerbi.com | IF AzureEnvironment=GLOBAL(default) |
| *.pbidedicated.windows.net | IF AzureEnvironment=GLOBAL(default); The exact cluster used (added in the *) is determined by calling the api.powerbi.com |
| login.microsoftonline.com | If AuthScheme=AzureAD (default), AzureServicePrincipal, AzureServicePrincipalCert AND AzureEnvironment=GLOBAL (default) |
| login.chinacloudapi.cn | If AuthScheme=AzureAD (default), AzureServicePrincipal , AzureServicePrincipalCert AND AzureEnvironment=CHINA |
| login.microsoftonline.us | If AuthScheme=AzureAD (default), AzureServicePrincipal, AzureServicePrincipalCert AND AzureEnvironment=USGOVT,USGOVTHIGH USGOVTDOD |
| api.powerbigov.us | IF AzureEnvironment=USGOVT |
| api.high.powerbigov.us | IF AzureEnvironment=USGOVTHIGH |
| api.mil.powerbigov.us | IF AzureEnvironment=USGOVTDOD |
| *.pbidedicated.usgovcloudapi.net | IF AzureEnvironment=USGOVT,USGOVTHIGH,USGOVTDOD |