Dynamics Community Forum Thread Details

Power BI refresh error- task table – missing prvReadActivity privilege / untrackedemail entity

Hi everyone,

When trying to load data from the task table (Dataverse / Dynamics 365) into Power BI, I’m getting the following error:

DataSource.Error: Microsoft SQL: {"Message":"Principal user (Id=da26697f-4a8e-e811-8171-e0071b66a071, type=8, roleCount=4, privilegeCount=158, accessMode='0 Read-Write', AADObjectId='72f0c0c7-c32a-42f2-9623-6b504ef65d59', MetadataCachePrivilegesCount=13331, businessUnitId=2266e753-6e22-e611-80e1-5065f38adae1), is missing prvReadActivity privilege (Id=650c14fe-3521-45fe-a000-84138688e45d) on OTC=4220 for entity 'untrackedemail' (LocalizedName='UntrackedEmail'). context.Caller=da26697f-4a8e-e811-8171-e0071b66a071. Consider adding missed privilege to one of the principal (user/team) roles."}
RequestId: TDS;e7614ce0-37c5-419a-9373-79eee5a90e7d;25
Time: 2026-01-27T14:38:11.7625344Z
Details:
    DataSourceKind=CommonDataService
    DataSourcePath=integritypartners.crm4.dynamics.com
    Message={"Message":"Principal user (Id=da26697f-4a8e-e811-8171-e0071b66a071, type=8, roleCount=4, privilegeCount=158, accessMode='0 Read-Write', AADObjectId='72f0c0c7-c32a-42f2-9623-6b504ef65d59', MetadataCachePrivilegesCount=13331, businessUnitId=2266e753-6e22-e611-80e1-5065f38adae1), is missing prvReadActivity privilege (Id=650c14fe-3521-45fe-a000-84138688e45d) on OTC=4220 for entity 'untrackedemail' (LocalizedName='UntrackedEmail'). context.Caller=da26697f-4a8e-e811-8171-e0071b66a071. Consider adding missed privilege to one of the principal (user/team) roles."}
RequestId: TDS;e7614ce0-37c5-419a-9373-79eee5a90e7d;25
Time: 2026-01-27T14:38:11.7625344Z
    ErrorCode=-2146232060
    Number=40000
    Class=16
    State=1
    ConnectionId=e7614ce0-37c5-419a-9373-79eee5a90e7d

Full details:

missing privilege: prvReadActivity

entity: untrackedemail

OTC = 4220

the error occurs during data refresh in Power Query

I’m not querying untrackedemail directly — I’m only trying to read the task table — but Dynamics still throws this error.

My question:

Which exact privileges must be added to the user to allow reading the task table through Power BI, without granting overly broad roles?

Is the minimum set:

Core Records → Activity → Read

Custom Entities → UntrackedEmail → Read

Or are there additional Activity-related privileges required for Power BI to read task?

I’d like to grant only the minimum permissions needed for successful data refresh.

Thanks in advance for your help!

Categories:

Dynamics 365 general

Power Platform integration

Hello @SA-30010910-0,

This behavior is expected.

Task is an Activity table in Dataverse.

When Power BI reads Task, Dataverse validates permissions across the entire Activity family.

That includes UntrackedEmail, even if it is not queried directly.

If read access is missing on any activity subtype, the refresh fails with prvReadActivity.

Minimum permissions required

Grant read-only access:

Core Records → Activity → Read (Organization level)

Custom Entities → UntrackedEmail → Read (Organization level)

No Create, Write, Append, or Append To permissions are required for Power BI refresh.

Recommended approach

Create a custom role with only the permissions above

Assign it to the Power BI user or service account

Clear Power BI cached credentials and refresh

This avoids assigning broad roles while satisfying Dataverse activity checks.

Microsoft Docs

Security roles and privileges

Role-based security model overview

Power BI Dataverse connector documentation

Quick Links

Leaderboard > Microsoft Dynamics 365 | Integration, Dataverse, and general topics