PI AF Security - More Granularity Needed

It would be helpful if AF's security model was more granular. For example (and please correct me if I am wrong), the same settings that allow someone to add/modify UOMs in AF is the same setting that allow someone to change the AF Sever name. This particular case recently caused us some issues with a client as we needed access for UOMs and then later, someone unintentionally changed the AF server name, causing PI Vision to not be usable for a short time. This is a specific example, but in general, more granularity in the functionality of the PI system is desired.

ADMIN RESPONSE

Aug 20, 2022

You already have the ability to set security on the Unit-of-Measure Database independent of the PI AF Server security settings. In PI System Explorer, click on the 'Unit of Measure' tab so that the UOM Classes are showing in the tree. Then select the 'File/Edit Security' menu entry to edit the security settings for the 'Unit-of-Measure Database'.

Attach files

Enter a subject

Roger Palmen

Reply
| Aug 20, 2022

Be aware that UoM's are defined server-wide, and not per AF Database. Therefore a change in UoM might also impact AF databases that the user is not authorized for. Although i agree there might be some more detailing that can be done, users with this level of access can do system-wide damage anyway.

0 reply Hide replies

Please enter your email address

RELATED IDEAS

PI AF Security - More Granularity Needed