check before: 2025-08-01
Product:
Fabric, Microsoft 365 admin center, Power BI
Platform:
Online, World tenant
Status:
Change type:
Admin impact, New feature, Updated message, User impact
Links:
Details:
Summary:
Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in preview by late August 2025. These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can manage these settings in the Fabric admin portal. Review and adjust settings upon release.
Details:
Updated July 3, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins.
[When this will happen:]
Public Preview (Worldwide): We will begin rolling out in late August 2025 (previously late June).
We will communicate the plan for General Availability in a future post.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-05-09
updated:
2025-07-04
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft Fabric is introducing Workspace-level private links and Outbound access protection to enhance network security by controlling data flow in and out of workspaces, with these features currently in preview for testing and refinement.
Direct effects for Operations**
Workspace-level private links
Blocking inbound public access may lead to connectivity issues for users who rely on public access to data, potentially disrupting workflows and data retrieval processes.
- roles: Workspace Admin, End User
- references: https://learn.microsoft.com/fabric/security/
Outbound access protection
Enabling outbound access protection could prevent users from accessing necessary external resources, leading to interruptions in data processing and analysis tasks.
- roles: Workspace Admin, Data Analyst
- references: https://learn.microsoft.com/fabric/security/
Tenant-level settings management
If tenant admins do not properly configure the new settings, it may result in unintended data exposure or access issues, affecting overall data security and user experience.
- roles: Tenant Admin, Compliance Officer
- references: https://learn.microsoft.com/fabric/security/
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
Enhanced Data Security through Private Links
The introduction of Workspace-level private links allows workspace admins to secure inbound connectivity to Microsoft Fabric. By blocking inbound public access, organizations can significantly reduce the risk of unauthorized access and potential data breaches, which is crucial for protecting sensitive information.
- next-steps: Assess current data access patterns and identify sensitive data locations. Prepare to implement private links as part of the security strategy upon feature release.
- roles: IT Security Administrators, Data Governance Officers, Compliance Managers
- references: https://learn.microsoft.com/fabric/security/
Reduced Risk of Data Exfiltration
The Outbound access protection feature enables workspace admins to block all outbound connectivity from the workspace, mitigating risks associated with data exfiltration. This is particularly important for organizations handling sensitive or regulated data.
- next-steps: Evaluate the data flow and connectivity requirements of the organization. Develop policies for outbound access and prepare to configure the new settings post-release.
- roles: Data Protection Officers, IT Security Administrators, Cloud Architects
- references: https://learn.microsoft.com/fabric/security/
Streamlined IT Administrative Tasks
With the new tenant-level settings for inbound and outbound network rules, IT admins can centrally manage network security configurations across workspaces, reducing the complexity and time spent on individual workspace settings.
- next-steps: Review existing network security policies and prepare to integrate the new tenant-level settings into the IT administration processes.
- roles: IT Administrators, Network Administrators, Cloud Services Managers
- references: https://learn.microsoft.com/fabric/security/
Potentional Risks**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2025-07-04 | MC Last Updated | 05/30/2025 16:37:40 | 2025-07-03T16:47:27Z |
| 2025-07-04 | MC Messages | Updated May 30, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late June 2025 (previously early June). We will communicate the plan for General Availability in a future post. | Updated July 3, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late August 2025 (previously late June). We will communicate the plan for General Availability in a future post. |
| 2025-07-04 | MC End Time | 09/05/2025 09:00:00 | 2025-10-27T08:00:00Z |
| 2025-07-04 | MC Summary | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in late June 2025 (preview). These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can configure these settings in the Fabric admin portal and disable them if necessary. | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in preview by late August 2025. These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can manage these settings in the Fabric admin portal. Review and adjust settings upon release. |
| 2025-05-31 | MC Messages | Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins.
[When this will happen:] Public Preview (Worldwide): We will begin rolling out early June 2025 and expect to complete by mid-June 2025. We will communicate the plan for General Availability in a future post. | Updated May 30, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late June 2025 (previously early June). We will communicate the plan for General Availability in a future post. |
| 2025-05-31 | MC Title | Microsoft Fabric: Workspace inbound/outbound access protection will be available by default (preview) | (Updated) Microsoft Fabric: Workspace inbound/outbound access protection will be available by default (preview) |
| 2025-05-31 | MC Last Updated | 05/09/2025 01:09:25 | 2025-05-30T16:37:40Z |
| 2025-05-31 | MC MessageTagNames | New feature, User impact, Admin impact | Updated message, New feature, User impact, Admin impact |
| 2025-05-31 | MC Summary | Microsoft Fabric will introduce Preview features for Workspace-level private links and Outbound access protection in June 2025. These features, enabled by default, allow workspace admins to secure inbound and outbound data connections. Tenant admins can disable these settings in the Fabric admin portal. | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in late June 2025 (preview). These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can configure these settings in the Fabric admin portal and disable them if necessary. |
Last updated 6 days ago
