The lineage harvester uses REST API version 2.0 to ingest SQL Server Reporting Services (SSRS) and Power BI Report Server (PBRS) metadata. You need at least the minimum permissions in SSRS-PBRS to enable the lineage harvester to access the SSRS-PBRS metadata and ingest it in Data Catalog.
Important There are known limitations to the metadata returned by the API when integrating PBRS. For example, Power BI reports in PBRS are ingested as Power BI Report assets in Data Catalog, but there is no technical lineage for the reports.
Roles in SSRS-PBRS
Role definitions are either item-level or system-level. SSRS-PBRS include predefined roles that correspond to different levels of user interaction.
- Item-level role definitions determine your access to the content in SSRS-PBRS.
- System-level role definitions determine your access to site operations.
| Predefined role | Scope | Description |
|---|---|---|
|
Content Manager |
Item-level |
Full access to reports, report models, folders, and other items within the folder hierarchy on the Report Server. |
|
Publisher |
Item-level |
Add content to a Report Server. Intended for users who author reports or models in Report Designer or Model Designer and then publish those items to a Report Server. |
|
Browser |
Item-level |
View folders and reports, and subscribe to reports, but not author or manage reports. |
|
Report Builder |
Item-level |
Load reports in Report Builder, and view and navigate the folder hierarchy. Note Report Builder is a tool for authoring paginated reports that you can publish to the Power BI service. To create and modify reports in Report Builder, you must also have a system role assignment that includes the "Execute report definitions" task. Both predefined system-level roles include this task. |
|
My Reports |
Item-level |
Publish reports and linked reports. Manage folders, reports, and resources in your My Reports folder. Intended for users of the My Reports feature. It includes tasks that grant administrative permissions to users only over the My Reports folder that they own. |
|
System Administrator |
System-level |
Gives users full administrative permissions over a Report Server, but not the content in it. |
|
System User |
System-level |
Allows users to view basic information about a Report Server. It also includes support for loading a report in Report Builder. |
For complete information, see the SSRS documentation.
Minimum roles and permissions
The following item-level roles in SSRS provide the required access to content in SSRS-PBRS. With any of the following item-level roles, you can harvest the metadata, ingest the corresponding SSRS assets in Data Catalog and view the lineage between those assets:
- Content Manager
- Publisher
- Report Builder: Only the content contained in your paginated reports.
- My Reports: Only the content in the My Reports folders that you own.
Recommended roles
The Content Manager role is often used with the System Administrator role. The System Administrator role includes tasks that are useful for a Report Server administrator who has overall responsibility for a Report Server, but not necessarily for the content within it. For users who require access to both site-wide operations and items stored on the Report Server, create a second role assignment on the Home folder that includes the Content Manager role. Together, the two role definitions provide a complete set of tasks for users who require full access to all items on a Report Server.