Toggle Side Panel

A confirmation code will be emailed when setting up your account or resetting your passwordā€”check spam if needed.no-reply@dynamicscommunities.com

Preview of OneLake Security: Unified Data Access Control for Data Enterprise

Pablo Moreno November 11, 2025 Article
data access control

Microsoft has just announced the full preview of OneLake Security, signifying a major step forward in how organizations can protect, govern, and share data across the Microsoft Fabric ecosystem. For tech professionals, analysts, and IT teams, this means a new level of confidence and simplicity in managing data access. Whatā€™s behind this announcement, and why does it matter? Letā€™s dive in.

Unified Data Access Control at the Data Layer

OneLake Security is designed to provide fine-grained, unified access control directly at the data layer. Rather than scattering permissions across various tools and platforms, OneLake Security centralizes who can see what, making it much easier to enforce policies and ensure compliance. This unified approach means that whether users access data through Power BI, Spark, SQL Analytics Endpoint, or Copilot, they only see the data theyā€™re authorized to view.

Centralized Security Roles

Managing access to data can quickly become a headache as organizations grow. With OneLake Security, centralized security roles let admins define, assign, and manage permissions for tables, folders, or even entire lakehouses from a single location. Want to grant your analytics team access to customer purchase data, but not sensitive PII? Just add them to the right role, no need to manually manage dozens of permission lists.

Row and Column-Level Security

Data security isnā€™t just about who can access a dataset, but about which rows and columns they can see. OneLake Security supports both row-level security (RLS) and column-level security (CLS), applied consistently across all Fabric experiences. For instance, you can ensure that analysts only see data for their assigned region (RLS), or that PII columns like phone numbers and emails are hidden from everyone except authorized users (CLS). This precision helps organizations comply with regulations and internal policies without sacrificing usability. Again, this will be applicable to any other service within Fabric.

Data Access Propagation

One of the biggest challenges in data governance is making sure access policies follow the data. With OneLake Security, data access permissions propagate seamlessly across all supported tools. Whether a user works in Power BI, queries data in Spark, or uses Copilot for insights, theyā€™ll only see the data their role allows. I canā€™t lie, this is my favorite feature.

No Data Duplication

Traditional data sharing often means creating copies or extracts, which leads to version sprawl and additional security risks. OneLake Security leverages shortcuts and sharing mechanisms that allow users to share data without making unnecessary duplicates. This not only saves storage and reduces costs but also ensures that security policies remain intact; what you see is always governed by the latest access rules.

Performance for SQL Analytics Endpoint and Spark

Microsoft hasnā€™t just focused on the backend. The user interface for managing security roles is now more intuitive, making it easier to set up and audit permissions. Plus, thanks to performance improvements in the SQL Analytics Endpoint and Spark, users get faster, more responsive access to the data they need, within the limits of their permissions.

Integration with Microsoft Purview

Security is just one side of the data governance coin: the other is compliance and oversight. OneLake Security integrates with Microsoft Purview, Microsoftā€™s comprehensive governance platform. This allows organizations to define, monitor, and enforce data policies across the entire data estate. For example, Purview can help identify sensitive data, track usage, and alert administrators if a policy violation occurs, all while OneLake Security enforces the right access controls at the data layer.

Final Thoughts

Microsoftā€™s full preview of OneLake Security is a significant milestone for organizations looking to modernize their data governance strategies. By unifying access control, simplifying security management, and integrating with Purview, OneLake Security empowers teams to collaborate freely while keeping sensitive data protected.

Click here for more content from the Fabric User Group.

Categories: Fabric, User Group Communities
Tags: ,

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .

Welcome to our new site!

Here you will find a wealth of information created for peopleĀ  that are on a mission to redefine business models with cloud techinologies, AI, automation, low code / no code applications, data, security & more to compete in the Acceleration Economy!