Introduction
This document describes how to use the One Identity Safeguard Power BI Connector (Power BI Connector) to import and visualize audit data from One Identity Safeguard for Privileged Sessions (SPS) in the Power BI Desktop reporting application.
The Power BI Connector automatically authenticates to the SPS REST API, then makes the appropriate calls on the appropriate endpoints to retrieve all audit data matching your filter queries.
Detailed information about this topic
Prerequisites and limitations to using the One Identity Safeguard Power BI Connector
Prerequisites and limitations to using the One Identity Safeguard Power BI Connector
Using the One Identity Safeguard Power BI Connector (Power BI Connector) to import and visualize your audit data in the Power BI Desktop reporting application has the following prerequisites and limitations.
Prerequisites
-
Download the Microsoft Power BI Desktop application.
-
Enable loading third party connectors.
-
In One Identity Safeguard for Privileged Sessions (SPS), under Basic Settings > Management > SSL certificates, download the CA X.509 certificate of SPS to the Windows machine on which you are running the Power BI Desktop application, and import it to the local computer's certificate store as a trusted root certification authority.
NOTE: One Identity recommends that when you download your CA X.509 certificate, you use the DER format instead of using the PEM format.
-
Download the Power BI Connector version that is compatible with your SPS version.
Limitations
-
The Power BI Connector is supported from SPS version 7.3. For more information about versions and compatibility, see the product's Releases page on GitHub.
-
You cannot use the Power BI Connector report template in the Power BI Desktop application without the Power BI Connector.
How to get the One Identity Safeguard Power BI Connector
How to get the One Identity Safeguard Power BI Connector
One Identity recommends that you make sure you meet the prerequisites to using the One Identity Safeguard Power BI Connector (Power BI Connector) before you proceed to download the application.
Downloading the Power BI Connector
Import data to the Power BI Desktop application using the One Identity Safeguard Power BI Connector
Import data to the Power BI Desktop application using the One Identity Safeguard Power BI Connector
One Identity recommends that when importing your data to the Power BI Desktop application using the One Identity Safeguard Power BI Connector (Power BI Connector), you proceed in the following order.
-
Include the MEZ file in the appropriate local folder
After you download the MEZ file of the Power BI Connector from the release assets of the GitHub source repository, copy the MEZ file to your This PC\Documents\Power BI Desktop\Custom Connectors folder.
NOTE: For a newly installed Power BI Connector, this folder does not exist, but you can create it manually for the path above.
-
Enable the Power BI Desktop application to use the Power BI Connector
To enable the Power BI Desktop application to use the Power BI Connector
-
Navigate to File > Options and settings > Options > Security > Data extensions, and select (Not recommended) Allow any extension to load without validation or warning.
-
Navigate to Home > Get data, and use the search bar to find the Power BI Connector.
TIP:The connector is named Safeguard for Privileged Sessions (Beta), so One Identity recommends that you begin typing Safeguard.
-
Select the connector and click Connect.
A popup window appears.
-
Enter the input query parameters for the Power BI Connector, then click OK.
NOTE: The only required field is SPS IP, where you specify the IP address of the SPS appliance that you want to fetch session data from.
NOTE: You can use the optional fields to filter the data you want to fetch.
For more information, see List of available search queries in the One Identity Safeguard for Privileged Sessions Administration Guide.
A popup window appears.
-
Enter a username that is a valid username on SPS with the corresponding valid SPS password, then click Connect.
NOTE: To successfully authenticate and fetch data from SPS, you must have search access rights.
NOTE: If you have not previously imported your CA X.509 certificate of SPS, you may see the following notification:
Unable to connect
We encountered an error while trying to connect. Details: "The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel."
In this case, download your SPS CA X.509 certificate and import it to your certificate store.
NOTE: You may get the following message:
Your version of the connector (ConnectorVersion) is not compatible with your SPS version (SPSVersion). For a connector version that is compatible with your SPS version, visit the official release page of the connector: https://github.com/OneIdentity/SafeguardPowerBI/releases
Possible reason: SPS or Power BI Connector was upgraded.
Solution: Check and upgrade Power BI Connector. For more information, see Upgrading your Power BI Connector.
The Navigator data preview window appears.
-
Use the Info and Sessions table options to preview your fetched session data.
|
Caution:
One Identity strongly recommends that you check both the Info and Sessions table options to facilitate debugging with more detailed information, even if trace logs are not enabled. |
NOTE: If you have previously used the Power BI Connector with the same input parameters, the Power BI Connector may fetch data from cache memory in the Preview popup window. To avoid this, click Refresh.
NOTE: In the Preview popup window, the Power BI Connector starts loading data, but may not fetch and display all data successfully. After you click Load, the data fetch process begins and the Power BI Connector fetches audit data from SPS. After the fetch process is successfully completed, you can start creating your reports. One Identity provides a preconfigured report template that you can use to visualize your imported audit data in the Power BI Desktop application.