CREATE in Service, ASSIGN in Desktop, although it appears secure at first glance, it does not reflect the required role-filter expression behavior in Power BI.

Both in Power BI Service, however, this mixes up security filter propagation rules and does not match how row-level security is actually evaluated.

Both in Power BI Desktop, although it appears secure at first glance, it does not reflect the required role-filter expression behavior in Power BI.

CREATE roles in Power BI Desktop, ASSIGN users in Power BI Service

A permission strategy that belongs to workspace access control rather than row-level data filtering rules