Hi,
For your use case, it is only possible to restrict a **Virtual DataPort User** or an **LDAP user** and provide access privileges for a particular database.
I understand that there are multiple Power BI users who are commonly accessing through a Service User to connect to Denodo. If this is the scenario, it is not possible to restrict Power BI users who use service account for accessing Denodo.
However, as a workaround for your use case, You can bypass the service user by being a Virtual DataPort user or an LDAP user. For example.
* For a Virtual DataPort User, I can grant privileges and assign roles to restrict access over a particular database.
* For an LDAP user(if mapped with necessary roles), I will import the roles and grant privileges to restrict the user.
For more information refer to the **[Denodo Power BI Custom Connector - User Manual](https://community.denodo.com/docs/html/document/denodoconnects/8.0/en/Denodo%20Power%20BI%20Custom%20Connector%20-%20User%20Manual)** Knowledge Base Article for connecting Power BI with Denodo and the following documents from the Virtual Dataport Administration guide
* **[Creating Users](https://community.denodo.com/docs/html/browse/8.0/en/vdp/administration/databases_users_and_access_rights_in_virtual_dataport/administration_of_databases_users_roles_and_their_access_rights/creating_users#creating-users)**
* **[Modifying the Privileges of a User](https://community.denodo.com/docs/html/browse/8.0/en/vdp/administration/databases_users_and_access_rights_in_virtual_dataport/administration_of_databases_users_roles_and_their_access_rights/modifying_and_deleting_users#modifying-the-privileges-of-a-user)**
Hope this helps!
