Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Workspace roles define what users can do with Microsoft Fabric items. Roles can be assigned to individuals or security groups from workspace view. For more information about how to manage workspace roles, see Give users access to workspaces.
Lakehouse workspace roles and item-specific functions
A user can be assigned to the following roles:
- Admin
- Member
- Contributor
- Viewer
In a lakehouse, the users with Admin, Member, and Contributor roles can perform all CRUD (create, read, update, and delete) operations on all data. A user with the Viewer role can only read data stored in tables using the SQL analytics endpoint.
Important
When accessing data using the SQL analytics endpoint with Viewer role, make sure the SQL access policy is granted to read required tables.
The following matrix shows which actions each workspace role can perform on lakehouse items:
| Role | Create | Read | Update | Delete |
|---|---|---|---|---|
| Admin | ✔ | ✔ | ✔ | ✔ |
| Member | ✔ | ✔ | ✔ | ✔ |
| Contributor | ✔ | ✔ | ✔ | ✔ |
| Viewer | ✔1 |
1 Viewer can only read data stored in tables using the SQL analytics endpoint provided SQL access policy is granted.