I am working on a PowerBI dashboard that uses data from a SharePoint list. However, I want to ensure the following restrictions and requirements are met:
- The user account accessing the SharePoint list should only have access to that list and not the entire SharePoint site.
- The user account can not have access to any other elements/components on that SharePoint site, not through direct login, and not through PowerBI
- Only certain columns from the list are used.
In my understanding the user has to have rights to the site in order for it to be able to read site elements such as lists in PowerBi.
I get "Authentication could not be performed with the specified login information. Please try again.", cause the user currently has no rights to the site, nor is the user in any group that has access: 
Is it possible to configure SharePoint permissions such that a user can interact with a list without having broader site access? If not, what’s the best practice for restricting their access as much as possible?
Are there any alternative approaches for connecting to a SharePoint list in this restricted scenario, such as APIs (Graph) or custom scripts?
Additional Info:
- The SharePoint list resides in SharePoint Online (Microsoft 365).
- I am open to solutions involving Power Automate, Azure Logic Apps, or custom scripting (e.g., Python or PowerShell).
- Security is critical: the service account must only access what is strictly necessary. Other site data is very sensitive.
- The service account and the SharePoint list are available for all members in the organizations, but other site elements should not be
Any help or insights would be greatly appreciated! Thanks in advance!
