check before: 2025-07-01
Product:
Fabric, Microsoft 365 admin center, Power BI
Platform:
Online, World tenant
Status:
Change type:
Admin impact, New feature, Updated message, User impact
Links:
Details:
Summary:
Microsoft Fabric will introduce Workspace-level private links and Outbound access protection features in public preview in late July 2025. Tenant admins can enable these features in the Fabric admin portal, allowing workspace admins to configure secure inbound and outbound connectivity. Review and adjust settings as needed. Learn more [here](https://learn.microsoft.com/fabric/security/).
Details:
Updated July 9, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal.The new tenant-level settings will be disabled by default. You (the tenant admin) can switch ON the tenant toggle in the Fabric admin center if you decide to make this feature available to your workspace admins. This will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level.
[When this will happen:]
Public Preview (Worldwide): We will begin rolling out in late July 2025 (previously late August).
We will communicate the plan for General Availability in a future post.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-05-09
updated:
2025-07-10
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft Fabric is introducing Workspace-level private links and Outbound access protection features to enhance data security by allowing secure connections and controlling outbound data transfers, currently available in public preview for testing and feedback.
Direct effects for Operations**
Workspace-level private links
Without proper preparation, enabling private links may lead to unintentional blocking of legitimate inbound access, disrupting user workflows and access to necessary data.
- roles: Tenant Admin, Workspace Admin
- references: https://learn.microsoft.com/fabric/security/
Outbound access protection
If outbound access protection is enabled without prior configuration, it may prevent users from accessing external resources, leading to disruptions in data processing and analytics tasks.
- roles: Workspace Admin, Data Analyst
- references: https://learn.microsoft.com/fabric/security/
Tenant-level settings adjustment
Failure to review and adjust tenant-level settings may result in security vulnerabilities or operational inefficiencies, impacting overall data governance and compliance.
- roles: Tenant Admin, Compliance Officer
- references: https://learn.microsoft.com/fabric/security/
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
Enhanced Data Security through Private Links
Implementing workspace-level private links allows for secure inbound connectivity to Microsoft Fabric, significantly reducing the risk of unauthorized access and potential data breaches. This feature enables workspace admins to block inbound public access to data, ensuring that only specific virtual networks can connect to the workspace.
- next-steps: Train workspace admins on how to configure private links in Azure and establish policies for blocking public access. Regularly review and audit access logs to ensure compliance with security protocols.
- roles: Security Administrators, Data Governance Officers, IT Managers
- references: https://learn.microsoft.com/fabric/security/
Data Exfiltration Prevention with Outbound Access Protection
The outbound access protection feature allows workspace admins to block all outbound connectivity from the workspace, preventing data exfiltration. This is crucial for organizations handling sensitive data, as it ensures that data can only be sent through established managed private endpoints.
- next-steps: Develop a policy framework for enabling outbound access protection, including guidelines for establishing managed private endpoints. Conduct training sessions for workspace admins on how to manage and monitor outbound access settings.
- roles: Compliance Officers, Data Protection Officers, IT Security Teams
- references: https://learn.microsoft.com/fabric/security/
Streamlined IT Operations with Centralized Networking Settings
The introduction of tenant-level settings for configuring workspace-level inbound and outbound network rules in the Fabric admin portal can streamline IT operations. This centralization allows for easier management of network security settings across multiple workspaces, reducing administrative overhead.
- next-steps: Create a centralized governance model for managing network security settings. Implement regular reviews and updates of these settings to adapt to changing security requirements and ensure compliance across the organization.
- roles: IT Administrators, Network Engineers, Compliance Managers
- references: https://learn.microsoft.com/fabric/security/
Potentional Risks**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2025-07-10 | MC Messages | Updated July 3, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late August 2025 (previously late June). We will communicate the plan for General Availability in a future post. | Updated July 9, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal.The new tenant-level settings will be disabled by default. You (the tenant admin) can switch ON the tenant toggle in the Fabric admin center if you decide to make this feature available to your workspace admins. This will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late July 2025 (previously late August). We will communicate the plan for General Availability in a future post. |
| 2025-07-10 | MC Last Updated | 07/03/2025 16:47:27 | 2025-07-09T16:03:36Z |
| 2025-07-10 | MC prepare | After we release these features, please review these settings to assess the impact on your organization and adjust them as needed.
If you have questions or need further assistance, please do not hesitate to contact our support team. Learn more: Microsoft Fabric security - Microsoft Fabric | Microsoft Learn We will update this post with new documentation. https://learn.microsoft.com/fabric/security/ | After we release these features, please review these settings to assess the impact on your organization and adjust them as needed.
If you have questions or need further assistance, please do not hesitate to contact our support team. Learn more: Microsoft Fabric security - Microsoft Fabric | Microsoft Learn We will update this post with new documentation. |
| 2025-07-10 | MC Summary | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in preview by late August 2025. These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can manage these settings in the Fabric admin portal. Review and adjust settings upon release. | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection features in public preview in late July 2025. Tenant admins can enable these features in the Fabric admin portal, allowing workspace admins to configure secure inbound and outbound connectivity. Review and adjust settings as needed. Learn more [here](https://learn.microsoft.com/fabric/security/). |
| 2025-07-04 | MC Last Updated | 05/30/2025 16:37:40 | 2025-07-03T16:47:27Z |
| 2025-07-04 | MC Messages | Updated May 30, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late June 2025 (previously early June). We will communicate the plan for General Availability in a future post. | Updated July 3, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late August 2025 (previously late June). We will communicate the plan for General Availability in a future post. |
| 2025-07-04 | MC End Time | 09/05/2025 09:00:00 | 2025-10-27T08:00:00Z |
| 2025-07-04 | MC Summary | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in late June 2025 (preview). These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can configure these settings in the Fabric admin portal and disable them if necessary. | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in preview by late August 2025. These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can manage these settings in the Fabric admin portal. Review and adjust settings upon release. |
| 2025-05-31 | MC Messages | Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins.
[When this will happen:] Public Preview (Worldwide): We will begin rolling out early June 2025 and expect to complete by mid-June 2025. We will communicate the plan for General Availability in a future post. | Updated May 30, 2025: We have updated the timeline below. Thank you for your patience.
Microsoft Fabric will introduce two Preview features called Workspace-level private links and Outbound access protection at the Fabric workspace level. At the tenant level, the corresponding settings Configure workspace level inbound network rules and Configure workspace level outbound network rules will be in the Advanced networking section of the Fabric admin portal. The new tenant-level settings will be enabled by default, which will allow the workspace admins to configure Workspace-level private links and Outbound access protection. The workspace admin will then decide whether to configure these features at the workspace level. You (the tenant admin) can switch off the tenant toggle in the Fabric admin center if you decide not to make this feature available to your workspace admins. [When this will happen:] Public Preview (Worldwide): We will begin rolling out in late June 2025 (previously early June). We will communicate the plan for General Availability in a future post. |
| 2025-05-31 | MC Title | Microsoft Fabric: Workspace inbound/outbound access protection will be available by default (preview) | (Updated) Microsoft Fabric: Workspace inbound/outbound access protection will be available by default (preview) |
| 2025-05-31 | MC Last Updated | 05/09/2025 01:09:25 | 2025-05-30T16:37:40Z |
| 2025-05-31 | MC MessageTagNames | New feature, User impact, Admin impact | Updated message, New feature, User impact, Admin impact |
| 2025-05-31 | MC Summary | Microsoft Fabric will introduce Preview features for Workspace-level private links and Outbound access protection in June 2025. These features, enabled by default, allow workspace admins to secure inbound and outbound data connections. Tenant admins can disable these settings in the Fabric admin portal. | Microsoft Fabric will introduce Workspace-level private links and Outbound access protection in late June 2025 (preview). These features will enhance network security by allowing workspace admins to block inbound and outbound public access. Tenant admins can configure these settings in the Fabric admin portal and disable them if necessary. |
Last updated 3 days ago
