Security

A few limitations make difficult to architect AIM with PI 2023: No support for NLB No support for failover cluster No support for multiple independent AIM instances As of today, AIM is a single point of failure and so HA is required to preven...

Read access to the PIPOINT table is required for most identities. Pointsecurity and Datasecurity currently use the settings on the PIPOINT table as the default. New points will generally give read access to most identities because of these default...

For clients who previously relied on claims authentication with PI Web API, it would be useful to be able to reproduce a similar authentication flow with bearer authentication and the AVEVA Identity Manager in PI Server 2023. Currently, federation...

Currently, it is a 5-step process to get authenticated. After the first authentication, it is only a 3-step process, but still clunky.

Currently the maximum password length for AF Linked Table connections using the "Supply Password" option is 15 characters. This length limitation should be increased to at least 25 characters.

I want to run the Auditviewer function as a unprivileged remote user, moving away from the current requirement to run as a local user on the PI Data Archive Server.  This is so I can minimize security risk associated with local user access on...

As a PI System administrator, I need to harden the OS of my servers consistent with industry best practices so that they are resilient to attack and random disruption. Official testing of compatibility with industry standards such as the Windows ...

Instead of having several admlin tools to manage the security for data archive, AF, PI Vision, PI Integrators Could you provide a centralized security management interface which could manage all the existing and upcoming OSIsoft tools

Currently, PI Asset Analytics utilizes NTLM authentication. My customer's MSFT Windows Ops team does not recommend using NTLM and by default have this deactivated. Request is to add support for Kerberos authentication for PI Asset Analytics as ...

It currently takes more effort to follow AVEVA's recommendation of setting minimum permissions for all PI service accounts than it is to use fewer service accounts with more permissions. To help steer PI administrators in the right direction, plea...