Weekly PowerBI

What shipped

• Protect once, enforce everywhere: Protection policies for Power BI: How to use sensitivity labels and Protection Policies to secure your Power BI estate — and why it matters more than ever in the age of AI. (24 Jun)
• Microsoft Entra ID single sign-on for the Denodo connector in Power BI: When you configure a Denodo data connection for Entra ID SSO, users querying a semantic model in DirectQuery mode are authenticated to Denodo with their own Microsoft Entra ID identity. (23 Jun)
• Connector migration from ODBC to ADBC: If you use connectors like Databricks, Snowflake, or BigQuery in Power BI or Fabric, there’s an important change coming. (18 Jun)
• Microsoft Entra ID single sign-on for the Starburst connector in Power BI: When enabling Microsoft Entra ID single sign-on (SSo) for Starburst (Preview) report viewers querying semantic models in DirectQuery mode authenticate to Starburst with their own Entra ID identity, to… (18 Jun)
• Monthly Power BI feature summary: Author: Katie Murray, Senior Program Manager - Power BI continues to evolve with updates that make it easier to explore data, generate insights, and build more polished reports. (17 Jun)
• Workspace outbound access protection: Workspace outbound access protection (OAP) is a workspace-level control in Microsoft Fabric that lets you constrain where the data inside a workspace can flow. (17 Jun)
• Org apps with audiences: Announcing general availability of org apps in Power BI and Fabric, including one of the most requested capabilities: audiences. (16 Jun)
• Simplified Oracle connectivity: Connecting Power BI to Oracle has historically meant extra provider installations and data gateway deployment — even for cloud-hosted databases. (15 Jun)
• Monthly Power BI feature summary: This month, we’re continuing to focus on making every day work a little easier—whether that’s building reports, modeling data, or just getting answers faster. (09 Jun)
• Agentic and Copilot reporting workflows: AI powered Power BI reporting skills is a collection of multiple skills that enables AI agents to automate report creation, from designing pages to publishing to Fabric. (08 Jun)

Why it matters

• Protect once, enforce everywhere: Protection policies for Power BI: How to use sensitivity labels and Protection Policies to secure your Power BI estate — and why it matters more than ever in the age of AI.
• Microsoft Entra ID single sign-on for the Denodo connector in Power BI: When you configure a Denodo data connection for Entra ID SSO, users querying a semantic model in DirectQuery mode are authenticated to Denodo with their own Microsoft Entra ID identity.
• Connector migration from ODBC to ADBC: Power BI and Fabric connectors are moving toward Arrow Database Connectivity for several major data platforms.
• Microsoft Entra ID single sign-on for the Starburst connector in Power BI: When enabling Microsoft Entra ID single sign-on (SSo) for Starburst (Preview) report viewers querying semantic models in DirectQuery mode authenticate to Starburst with their own Entra ID identity, to Starburst's…
• Monthly Power BI feature summary: The feature summary collects reporting, modeling, Copilot and service updates into one release note surface.
• Workspace outbound access protection: Power BI reports can inherit workspace-level controls that restrict where data is allowed to flow.
• Org apps with audiences: Power BI and Fabric org apps can now target different audiences from one governed app package.
• Simplified Oracle connectivity: Oracle connections become easier by reducing dependency on extra providers and gateway-heavy setup paths.
• Monthly Power BI feature summary: The feature summary collects reporting, modeling, Copilot and service updates into one release note surface.
• Agentic and Copilot reporting workflows: Microsoft is pushing more report design, semantic-model analysis and deployment tasks into AI-assisted workflows.

How analytics teams could use it

• Protect once, enforce everywhere: Protection policies for Power BI: Assess whether it improves governance, authoring speed, semantic-model quality, connector reliability or app distribution.
• Microsoft Entra ID single sign-on for the Denodo connector in Power BI: Assess whether it improves governance, authoring speed, semantic-model quality, connector reliability or app distribution.
• Connector migration from ODBC to ADBC: BI teams should audit Databricks, Snowflake and BigQuery connection paths so driver changes do not surprise production refreshes.
• Microsoft Entra ID single sign-on for the Starburst connector in Power BI: Assess whether it improves governance, authoring speed, semantic-model quality, connector reliability or app distribution.
• Monthly Power BI feature summary: BI leads can use it as a checklist for capabilities to test in report authoring, semantic modeling and self-service workflows.
• Workspace outbound access protection: Security and BI platform teams can tighten exfiltration controls for sensitive reporting workspaces without redesigning every report.
• Org apps with audiences: Analytics product teams can ship one app with role-specific navigation and content rather than maintaining duplicate distribution surfaces.
• Simplified Oracle connectivity: Teams can connect BI models to Oracle-backed operational data with less platform plumbing and faster proof-of-value cycles.
• Monthly Power BI feature summary: BI leads can use it as a checklist for capabilities to test in report authoring, semantic modeling and self-service workflows.
• Agentic and Copilot reporting workflows: Analytics teams can prototype report pages, inspect models and automate authoring tasks while keeping humans in review for metric quality.

Editorial read

Power BI is moving in two parallel directions: stronger governance for enterprise distribution, and more AI-assisted creation for reports and semantic models. For analytics products, the practical opportunity is to turn recurring BI assets into governed products: targeted audiences, safer data-flow controls, reusable DAX logic, and faster authoring loops.