Microsoft Fabric integrates comprehensive security measures, including data encryption, access controls, and compliance certifications. It ensures secure data handling and storage across cloud services, safeguarding sensitive information and meeting regulatory requirements. Security features are continuously updated to protect against evolving threats and vulnerabilities.
Here are some security points which are necessary to cross check those are enabled.
| Setting Name | Setting Description |
| Azure Private Link | Azure Private Link in Microsoft Fabric ensures private, secure connectivity within the Microsoft backbone network. |
| Block Public Internet Access | It prevents exposure of resources to the public internet, enhancing security within Microsoft Fabric. |
| Users are able to use Copilot and other features powered by Azure OpenAI | Users utilize Copilot and Azure OpenAI in Microsoft Fabric for enhanced productivity and AI-driven insights. |
| Service principals can use Fabric APIs | Service principals in Microsoft Fabric enable secure, automated access to Fabric APIs for managing resources. |
| External data sharing setting | External data sharing in Microsoft Fabric allows secure, controlled sharing of data outside your organization. |
| Users can accept external data shares | It allows users to receive and access shared external data securely within Microsoft Fabric. |
| Guest users can access Microsoft Fabric | It allows external users to collaborate securely on projects within Microsoft Fabric, enhancing teamwork. |
| Allow shareable links to grant access to everyone in your organization | It enables shareable links to provide organization-wide access to resources in Microsoft Fabric. |
| Users can access data stored in OneLake with apps external to Fabric | It allows external apps to securely access and utilize data stored in OneLake within Microsoft Fabric. |
| Role assigned on workspace (Admin, member, and contributor) | Role assignments in Microsoft Fabric workspaces manage user permissions and access to specific workspace resources. |
| Data with sensitivity labels | Data with sensitivity labels in Microsoft Fabric helps manage and protect data access based on sensitivity. |
| Define workspace retention period | Define workspace retention period in Microsoft Fabric controls how long data is retained before deletion. |
| Workspace shared with which user or a servicePrincipal | Sharing a workspace with users or service principals in Microsoft Fabric grants them access to resources. |
| Items shared and permission capability which are stored with in a workspace | Items shared and permissions in a Microsoft Fabric workspace manage access and collaboration within the workspace. |
| Guest users can view and navigate specific shared content within Microsoft Fabric | Guest users can access and navigate specific shared content in Microsoft Fabric without full system access. |
| Guest users have broader access to use the platform’s features and possibly create content | Guest users in Microsoft Fabric can access more features and create content, enhancing collaboration and flexibility. |
| Block ResourceKey Authentication | Block ResourceKey Authentication prevents unauthorized access by blocking unauthorized requests using resource keys in Microsoft Fabric. |
| Internal users can invite guest users to collaborate through item sharing and permissions | Internal users can invite guests to collaborate by sharing items and managing permissions in Microsoft Fabric. |
| Dremio SSO | Single Sign-On integration for accessing Dremio using Microsoft credentials. |
| Snowflake SSO | Single Sign-On integration for accessing Snowflake using Microsoft credentials. |
| Redshift SSO | Single Sign-On integration for accessing Amazon Redshift using Microsoft credentials. |
| Google BigQuery SSO | Single Sign-On integration for accessing Google BigQuery using Microsoft credentials. |