Tag: Microsoft Certification

Analytics, Business Intelligence, Data Education & Training, Microsoft Certification, PL-300, Power BI

Practice Questions: Configure and Update a Workspace App (PL-300 Exam Prep)

 
This post is a part of the PL-300: Microsoft Power BI Data Analyst Exam Prep Hub; and this topic falls under these sections:
Manage and secure Power BI (15–20%)
   --> Create and manage workspaces and assets
      --> Configure and Update a Workspace App

Below are 10 practice questions (with answers and explanations) for this topic of the exam.
There are also 2 practice tests for the PL-300 exam with 60 questions each (with answers) available on the hub.

Practice Questions

Question 1

What is the primary purpose of publishing a workspace app in Power BI?

A. To allow multiple developers to edit reports simultaneously
B. To provide a read-only, curated experience for report consumers
C. To improve dataset refresh performance
D. To apply row-level security to reports

Correct Answer: B

Explanation:
Workspace apps are designed for content consumption, not development. They provide a controlled, read-only experience for users, which is why they are preferred over direct report sharing for large audiences.

Question 2

Which workspace roles can publish or update a workspace app?

A. Viewer only
B. Contributor and Viewer
C. Member and Admin
D. Contributor and Member

Correct Answer: C

Explanation:
Only Members and Admins have permission to publish or update workspace apps. Contributors can create content but cannot manage apps.

Question 3

You update a report in a workspace, but users do not see the changes in the app. What must you do?

A. Refresh the dataset
B. Clear the app cache
C. Republish or update the app
D. Reassign user permissions

Correct Answer: C

Explanation:
Changes made in the workspace do not automatically appear in the app. You must explicitly update (republish) the app for consumers to see the changes.

Question 4

Which feature allows different users to see different content within the same workspace app?

A. Row-level security (RLS)
B. Dataset roles
C. App audiences
D. Visual-level filters

Correct Answer: C

Explanation:
App audiences control content visibility, allowing different groups to see different reports or dashboards without duplicating content.

Question 5

Which permission allows users of an app to build their own reports using the app’s semantic model?

A. Viewer permission
B. Allow reshare
C. Build permission
D. Admin permission

Correct Answer: C

Explanation:
Granting Build permission allows users to connect to the underlying semantic model for scenarios such as Analyze in Excel or creating new reports.

Question 6

What happens to users when a workspace app is updated?

A. They must be re-added to the app
B. Their bookmarks are deleted
C. They automatically see the updated content
D. Their permissions are reset

Correct Answer: C

Explanation:
After an app is updated, users retain access and permissions, and the updated content becomes available automatically without additional action.

Question 7

Which scenario is the best use case for a workspace app?

A. Collaborative report development
B. Testing new visuals
C. Distributing finalized reports to a large audience
D. Debugging DAX calculations

Correct Answer: C

Explanation:
Workspace apps are ideal for broad distribution of production-ready content, while workspaces remain the collaboration area for developers.

Question 8

Which of the following is true about workspace apps?

A. Users can edit reports in an app
B. Apps automatically update when workspace content changes
C. Apps provide a controlled navigation experience
D. Apps replace the need for workspaces

Correct Answer: C

Explanation:
Apps allow creators to control navigation, ordering, and visibility of content. They are read-only and require manual updates.

Question 9

You want to hide a report from most users but make it available to executives using the same app. What should you do?

A. Duplicate the report into a new workspace
B. Use row-level security
C. Create a separate app
D. Use app audiences

Correct Answer: D

Explanation:
App audiences allow selective visibility of content without duplication, making them ideal for role-based access to reports.

Question 10

What is the key difference between a workspace and a workspace app?

A. Workspaces support data refresh; apps do not
B. Workspaces are for collaboration; apps are for consumption
C. Apps allow editing; workspaces do not
D. Apps automatically apply security

Correct Answer: B

Explanation:
A workspace is where content is created and maintained, while a workspace app is the distribution layer for end users.

Exam Tip

If a question mentions:

  • Broad distribution
  • Read-only access
  • Controlled release
  • Audiences
  • Updating without disrupting users

➡️ The correct answer is almost always Workspace App.

Go back to the PL-300 Exam Prep Hub main page

Analytics, Business Intelligence Platform, Microsoft Certification, PL-300, Power BI

Practice Questions: Identify when a gateway is required (PL-300 Exam Prep)

 
This post is a part of the PL-300: Microsoft Power BI Data Analyst Exam Prep Hub; and this topic falls under these sections:
Manage and secure Power BI (15–20%)
   --> Create and manage workspaces and assets
      --> Identify when a gateway is required

Below are 10 practice questions (with answers and explanations) for this topic of the exam.
There are also 2 practice tests for the PL-300 exam with 60 questions each (with answers) available on the hub.

Practice Questions

Question 1

You publish a Power BI report that imports data from an on-premises SQL Server and want to schedule daily refreshes in the Power BI service. What is required?

A. No additional configuration
B. A Power BI app
C. An on-premises data gateway
D. A premium capacity workspace

Correct Answer: C

Explanation:
Scheduled refresh from an on-premises data source requires a gateway to securely connect Power BI service to the local SQL Server.

Question 2

A dataset uses Azure SQL Database in Import mode with scheduled refresh enabled. Is a gateway required?

A. Yes, because scheduled refresh is enabled
B. Yes, because Import mode is used
C. No, because the data source is cloud-based
D. No, because the dataset is small

Correct Answer: C

Explanation:
Azure SQL Database is a cloud data source that Power BI can access directly, so no gateway is needed.

Question 3

You create a Power BI report using DirectQuery to an on-premises SQL Server. When users view the report in the Power BI service, what is required?

A. A gateway
B. A scheduled refresh
C. Import mode
D. Power BI Premium

Correct Answer: A

Explanation:
DirectQuery sends queries at report view time. A gateway is required for on-premises sources.

Question 4

Which scenario does NOT require a Power BI gateway?

A. Importing data from SharePoint Online
B. DirectQuery to an on-premises database
C. Refreshing an on-premises dataflow
D. Live connection to on-premises SSAS

Correct Answer: A

Explanation:
SharePoint Online is a cloud-based service and does not require a gateway.

Question 5

A report combines data from Azure Data Lake Storage and an on-premises file share. What is true?

A. No gateway is required because one source is cloud-based
B. A gateway is required for the on-premises source
C. A gateway is required for both sources
D. Gateways are not supported for mixed data sources

Correct Answer: B

Explanation:
Any on-premises data source used in the Power BI service requires a gateway, even in hybrid datasets.

Question 6

While working in Power BI Desktop, you connect to an on-premises SQL Server and refresh data locally. Is a gateway required?

A. Yes, always
B. Yes, if Import mode is used
C. No, gateways are only needed in the Power BI service
D. No, if DirectQuery is used

Correct Answer: C

Explanation:
Power BI Desktop connects directly to local data sources. Gateways are only required after publishing to the Power BI service.

Question 7

You want to refresh a Power BI dataflow that connects to an on-premises Oracle database. What is required?

A. Power BI Premium
B. A gateway
C. A paginated report
D. An app workspace

Correct Answer: B

Explanation:
Dataflows that use on-premises data sources require a gateway to refresh in the Power BI service.

Question 8

Which connection type always requires a gateway when the data source is on-premises?

A. Import with manual refresh
B. Import with scheduled refresh
C. DirectQuery
D. Both B and C

Correct Answer: D

Explanation:
Scheduled refresh and DirectQuery both require a gateway for on-premises data sources.

Question 9

A report uses a Live connection to an on-premises Analysis Services model. What is required?

A. A dataset refresh schedule
B. A gateway
C. Import mode
D. A certified dataset

Correct Answer: B

Explanation:
Live connections to on-premises Analysis Services require a gateway for real-time queries.

Question 10

Which factor is the most important when deciding if a gateway is required?

A. Dataset size
B. Data refresh frequency
C. Location of the data source
D. Number of report users

Correct Answer: C

Explanation:
Gateway requirements are based on whether the data source is accessible from the cloud or located on-premises.

Exam Tips

  • On-premises + Power BI service = Gateway
  • Cloud sources do not require gateways
  • DirectQuery and Live connections still require gateways
  • Desktop-only work never requires a gateway

Go back to the PL-300 Exam Prep Hub main page

Analytics, Business Intelligence, Data Education & Training, PL-300, Power BI

Practice Questions: Assign workspace roles (PL-300 Exam Prep)

 
This post is a part of the PL-300: Microsoft Power BI Data Analyst Exam Prep Hub; and this topic falls under these sections:
Manage and secure Power BI (15–20%)
   --> Secure and govern Power BI items
      --> Assign workspace roles

Below are 10 practice questions (with answers and explanations) for this topic of the exam.
There are also 2 practice tests for the PL-300 exam with 60 questions each (with answers) available on the hub.

Practice Questions

Question 1

You need to allow a user to add and remove workspace users and change workspace settings.
Which workspace role should you assign?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: D. Admin

Explanation:
Only the Admin role can manage workspace access and modify workspace settings. Members can manage content but cannot manage users.

Question 2

A business user needs to view reports and dashboards but should not be able to modify or publish any content.
Which role is most appropriate?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: A. Viewer

Explanation:
The Viewer role provides read-only access, allowing users to consume and interact with content without making changes.

Question 3

Which workspace role allows a user to create and edit reports but not publish or update a workspace app?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: B. Contributor

Explanation:
Contributors can create and modify content but cannot publish apps or manage workspace access.

Question 4

A Power BI developer must publish a workspace app but should not be able to add or remove users from the workspace.
Which role should be assigned?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: C. Member

Explanation:
Members can publish and update workspace apps but cannot manage workspace access, which is restricted to Admins.

Question 5

Which role is required to delete a workspace?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: D. Admin

Explanation:
Only workspace Admins have permission to delete a workspace.

Question 6

You want to follow best practices for access management by minimizing ongoing maintenance when employees change roles.
What should you use when assigning workspace access?

A. Individual user accounts
B. Distribution lists
C. Azure AD security groups
D. Shareable links

Correct Answer: C. Azure AD security groups

Explanation:
Using Azure AD security groups simplifies governance by allowing access changes to be managed centrally.

Question 7

A user needs to configure scheduled refresh for a semantic model but should not manage workspace access.
Which role is the minimum required?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: C. Member

Explanation:
Configuring scheduled refresh requires Member or Admin permissions. Contributors cannot manage refresh settings.

Question 8

Which workspace role requires a Power BI Pro license when the workspace is not in Premium capacity?

A. Admin only
B. Contributor only
C. Viewer only
D. All workspace roles

Correct Answer: D. All workspace roles

Explanation:
When a workspace is not in Premium capacity, all users, including Viewers, require a Power BI Pro license to access content.

Question 9

Which statement correctly describes the difference between workspace roles and row-level security (RLS)?

A. Workspace roles control data visibility, RLS controls actions
B. Workspace roles control actions, RLS controls data visibility
C. Both control user actions only
D. Both control data visibility only

Correct Answer: B. Workspace roles control actions, RLS controls data visibility

Explanation:
Workspace roles define what users can do, while RLS defines what data users can see within reports.

Question 10

You are designing a production workspace and want report consumers to have the least privilege possible.
Which role should they be assigned?

A. Viewer
B. Contributor
C. Member
D. Admin

Correct Answer: A. Viewer

Explanation:
The Viewer role follows the principle of least privilege, granting read-only access appropriate for production consumers.

Exam Readiness Checklist

✔ Know all four workspace roles
✔ Understand capabilities vs limitations
✔ Apply least privilege principles
✔ Recognize Admin-only actions
✔ Distinguish workspace roles from RLS

Go back to the PL-300 Exam Prep Hub main page

Business Intelligence, Business Intelligence Platform, Data Education & Training, PL-300, Power BI

Practice Questions: Configure item-level access in Power BI (PL-300 Exam Prep)

 
This post is a part of the PL-300: Microsoft Power BI Data Analyst Exam Prep Hub; and this topic falls under these sections:
Manage and secure Power BI (15–20%)
   --> Secure and govern Power BI items
      --> Configure item-level access

Below are 10 practice questions (with answers and explanations) for this topic of the exam.
There are also 2 practice tests for the PL-300 exam with 60 questions each (with answers) available on the hub.

Practice Questions

Question 1

You want business users to create their own reports using an existing semantic model, but you do not want them to edit the model. What should you grant them?

A. Workspace Viewer role
B. Workspace Contributor role
C. Build permission on the semantic model
D. Read permission on the report

Correct Answer: C

Explanation:
The Build permission allows users to create new reports using a semantic model without modifying it. Viewer access alone does not allow report creation, and Contributor access is broader than required.

Question 2

A user can view a dashboard but sees broken tiles that fail to load data. What is the most likely cause?

A. The dataset refresh failed
B. The user lacks Build permission
C. The user does not have access to the underlying report
D. The dashboard was shared incorrectly

Correct Answer: C

Explanation:
Dashboard tiles link back to underlying reports. If the user does not have access to those reports, the tiles will not display correctly—even if the dashboard itself is shared.

Question 3

Which permission allows a user to create a new report in Power BI Desktop using a published semantic model?

A. Read
B. Viewer
C. Contributor
D. Build

Correct Answer: D

Explanation:
Only the Build permission enables users to create new reports from an existing semantic model, including using Power BI Desktop or Analyze in Excel.

Question 4

You need to limit who can see specific reports within a Power BI app without creating multiple apps. What should you use?

A. Row-level security (RLS)
B. Workspace roles
C. App audiences
D. Dataset permissions

Correct Answer: C

Explanation:
App audiences provide item-level visibility within an app, allowing different user groups to see different reports or dashboards.

Question 5

Which statement best describes item-level access?

A. It controls what data rows users can see
B. It controls access to entire workspaces
C. It controls access to individual Power BI items
D. It replaces workspace roles

Correct Answer: C

Explanation:
Item-level access applies to individual items such as reports, dashboards, and datasets. It does not control row-level data access and does not replace workspace roles.

Question 6

A user has access to a report but cannot export data from it. What is the most likely explanation?

A. The dataset is using DirectQuery
B. The report is in a Premium workspace
C. Export permissions are restricted at the report or tenant level
D. The user lacks RLS permissions

Correct Answer: C

Explanation:
Export behavior is governed by item-level settings and tenant-level policies, not RLS or workspace type alone.

Question 7

When sharing a report, which permission must be explicitly granted if the user needs to reshare it with others?

A. Build
B. Viewer
C. Contributor
D. Reshare

Correct Answer: D

Explanation:
The Reshare permission must be explicitly enabled when sharing an item. Without it, users can view the report but cannot share it further.

Question 8

Which scenario requires item-level access instead of workspace roles?

A. Granting full control of all assets
B. Managing dataset refresh schedules
C. Allowing users to view only specific reports in a workspace
D. Enabling paginated report creation

Correct Answer: C

Explanation:
Item-level access allows fine-grained control over individual assets, making it ideal when users should only see specific reports.

Question 9

How does item-level access differ from row-level security (RLS)?

A. Item-level access controls data rows
B. RLS controls report visibility
C. Item-level access controls content access; RLS controls data visibility
D. They serve the same purpose

Correct Answer: C

Explanation:
Item-level access determines whether a user can open or interact with content, while RLS limits the data shown within that content.

Question 10

What is the recommended best practice when assigning item-level access at scale?

A. Assign permissions to individual users
B. Use workspace roles only
C. Use Azure AD security groups
D. Share reports anonymously

Correct Answer: C

Explanation:
Using Azure AD security groups improves scalability, simplifies maintenance, and aligns with enterprise governance best practices.

Exam Readiness Tip

If you can confidently answer questions about:

  • Build vs Read vs Reshare
  • Dashboards vs reports vs datasets
  • Item-level access vs workspace roles vs RLS

…you are in excellent shape for PL-300 questions in this domain.

Go back to the PL-300 Exam Prep Hub main page

Business Intelligence, Business Intelligence Platform, Data Education & Training, PL-300, Power BI

Practice Questions: Configure Access to Semantic Models (PL-300 Exam Prep)

 
This post is a part of the PL-300: Microsoft Power BI Data Analyst Exam Prep Hub; and this topic falls under these sections:
Manage and secure Power BI (15–20%)
   --> Secure and govern Power BI items
      --> Configure access to semantic models

Below are 10 practice questions (with answers and explanations) for this topic of the exam.
There are also 2 practice tests for the PL-300 exam with 60 questions each (with answers) available on the hub.

Practice Questions

Question 1

A user can view reports in a workspace but cannot create a new report using the existing semantic model. What is the most likely reason?

A. The user does not have Read permission on the semantic model
B. The user does not have Build permission on the semantic model
C. The user is not assigned a Row-Level Security role
D. The semantic model is not endorsed

Correct Answer: B

Explanation:
Creating new reports from a semantic model requires Build permission. A user can still view reports without Build permission, which makes this a common exam scenario.

Question 2

Which workspace role allows a user to edit semantic models and manage permissions?

A. Viewer
B. Contributor
C. Member
D. App user

Correct Answer: C

Explanation:
Members can publish, update, and manage semantic models, including assigning permissions. Contributors can edit content but cannot manage access.

Question 3

You want business users to create their own reports while preventing them from modifying the semantic model. What is the best approach?

A. Assign users the Viewer role and grant Build permission on the semantic model
B. Assign users the Contributor role
C. Assign users the Admin role
D. Publish the reports through a Power BI App only

Correct Answer: A

Explanation:
Granting Viewer role + Build permission enables self-service report creation without allowing model changes—this is a best practice and frequently tested.

Question 4

Where is Row-Level Security (RLS) enforced?

A. At the report level
B. At the dashboard level
C. At the semantic model level
D. At the workspace level

Correct Answer: C

Explanation:
RLS is defined in Power BI Desktop and enforced at the semantic model level, applying to all reports that use the model.

Question 5

Which DAX function is commonly used to implement dynamic Row-Level Security?

A. SELECTEDVALUE()
B. USERELATIONSHIP()
C. USERPRINCIPALNAME()
D. LOOKUPVALUE()

Correct Answer: C

Explanation:
USERPRINCIPALNAME() returns the logged-in user’s email or UPN and is commonly used in dynamic RLS filters.

Question 6

A user with Viewer access can see a report but receives an error when using Analyze in Excel. What is the most likely issue?

A. The user is not licensed for Power BI
B. The semantic model is not certified
C. The user does not have Build permission
D. RLS is incorrectly configured

Correct Answer: C

Explanation:
Analyze in Excel requires Build permission on the semantic model. Viewer role alone is insufficient.

Question 7

Which permission allows a user to share a semantic model with others?

A. Read
B. Build
C. Reshare
D. Admin

Correct Answer: C

Explanation:
The Reshare permission explicitly allows users to share the semantic model with other users or groups.

Question 8

What is the primary purpose of certifying a semantic model?

A. To apply Row-Level Security automatically
B. To improve query performance
C. To indicate the model is an approved and trusted data source
D. To allow external tool access

Correct Answer: C

Explanation:
Certification signals that a semantic model is officially approved and governed, helping users identify trusted data sources.

Question 9

Which approach is recommended for managing access to semantic models at scale?

A. Assign permissions to individual users
B. Use Microsoft Entra ID (Azure AD) security groups
C. Share semantic models directly from Power BI Desktop
D. Grant Admin role to all analysts

Correct Answer: B

Explanation:
Using security groups simplifies access management, supports scalability, and aligns with governance best practices.

Question 10

A report is published using a semantic model that has RLS enabled. A user accesses the report through a Power BI App. What happens?

A. RLS is ignored when using apps
B. RLS must be reconfigured for the app
C. RLS is enforced automatically
D. Only static RLS is applied

Correct Answer: C

Explanation:
Row-Level Security is always enforced at the semantic model level, regardless of whether content is accessed via a workspace, report, or app.

Final Exam Tips

  • Build permission is the most frequently tested concept
  • Viewer + Build is a common least-privilege design pattern
  • RLS always applies at the semantic model level
  • Certification is about trust and governance, not security
  • Apps do not bypass semantic model security

Go back to the PL-300 Exam Prep Hub main page