There are two types of Power BI and Microsoft Fabric admins right now.
The first type knows something is wrong. Reports are duplicating. Guest accounts nobody owns keep showing up in the tenant. The data catalog is a mess. Nobody can tell you what workspaces are active and what is just sitting there costing money. Copilot readiness? They haven't even started.
They have been meaning to audit all of this for months. They have opened the Admin portal. They have scrolled through the settings. They have made zero progress.
The second type ran an assessment. Found exactly what was broken. Fixed it in order of business risk. And now they have a clean, governed, Copilot-ready tenant — and the receipts to prove it to their CTO.
The difference is not knowledge. The difference is visibility.
I have spent 20 years in data and analytics. I hold dual Microsoft MVP status in Data Platform and AI. I have audited more Power BI and Fabric tenants than I can count, across companies ranging from mid-market operations to enterprise deployments.
Here is what I find every single time: the problem is never the technology. The problem is that nobody has ever taken a structured look at what is actually running in the tenant.
The uncomfortable truth about most Power BI tenants
Most organizations using Power BI or Microsoft Fabric have no real governance in place. Not because they don't care. Because nobody stopped to look.
Here is what a typical unaudited tenant looks like after two or three years of organic growth:
- Dozens of workspaces created by individuals who have since left the company — now ownerless
- Reports accessed once a month at best, still sitting in Premium capacity burning compute
- Guest accounts with broader permissions than anyone intended
- Shared datasets with no lineage documentation — nobody knows what feeds what
- Sensitivity labels inconsistently applied or not applied at all
- No readiness for Microsoft Copilot because the data foundation doesn't meet the prerequisites
None of this is visible from the inside when you're in it day to day. You need to step back and look at the whole thing at once. That is what a tenant assessment does.
What we actually find
When we run a Tenant Scan, we look at four areas:
Governance and Security. Who has access to what, and should they? Guest accounts, external sharing settings, sensitivity labels, admin role assignments. This is where the highest-risk findings live.
Workspace and Capacity Health. What is active, what is stale, what is costing you money without delivering value. We have seen organizations cut their Premium capacity costs by 30% just from cleaning up workspaces they forgot existed.
Data Architecture. Dataset dependencies, dataflow lineage, connection health, gateway configurations. The stuff that breaks at 8am on a Monday when the CFO needs the board report.
Copilot and AI Readiness. Microsoft Copilot for Fabric has specific prerequisites around data classification, sensitivity labeling, and access governance. Most tenants are not ready. We tell you exactly what needs to change and in what order.
Real numbers from real assessments
Here is what we found in a recent mid-market assessment — a manufacturing company with about 400 Power BI users:
- 23 workspaces with no assigned owner
- 14 active guest accounts that should have been removed
- 6 Premium datasets consuming capacity with zero active users in the past 90 days
- Sensitivity labels applied to less than 20% of content
- Copilot readiness score: 2 out of 10
After a 10-day remediation sprint using our prioritized recommendations: capacity costs reduced, guest access locked down, the top 3 Copilot blockers resolved, and an IT team with a governance framework they can actually maintain going forward.
That is what a structured look at your tenant unlocks.
The moment that changes everything
Every organization we have worked with had the same reaction when they saw their first assessment report: "We had no idea."
Not because they were careless. Because the tools don't surface this information in a digestible way. The Admin portal shows you everything and helps you understand nothing. You need someone who knows what to look for and what it means when they find it.
The organizations that do this assessment early save money, reduce risk, and set themselves up for everything Microsoft is building toward with Copilot and Fabric. The ones that skip it find out the hard way — usually when something breaks or an audit surfaces a compliance issue.
The gap between a messy tenant and a governed one is not a year of work. For most organizations it is a few weeks of focused effort, pointed in the right direction.
The Tenant Scan
We built Tenant Scan as a fixed-scope, fast-turnaround assessment for exactly this situation.
Tenant Scan Starter is designed for organizations that have never done a formal audit. We go deep on governance, security, and Copilot readiness, and deliver a prioritized report with clear remediation steps your team can act on immediately. Two-week turnaround. $2,500.
Tenant Scan Professional goes further — full data architecture review, capacity optimization analysis, and a 90-day governance roadmap. For organizations preparing for a major Fabric migration or Copilot rollout, this is the right starting point. $5,000.
Both engagements end with a readout session where we walk your team through every finding and answer every question.
You are a good fit if you are running Power BI or Fabric at 50+ users and have never done a formal governance review. If you are planning to roll out Microsoft Copilot and want to know if your tenant is actually ready. If you are a data or IT leader who has inherited a tenant and wants to understand what you are working with.
The first step is not another internal review cycle. The first step is a structured look at what is actually there.