AVEVA™ PI System™ Feedback Portal

Welcome to our feedback site!


We created this site to hear your enhancement ideas, suggestions and feedback about AVEVA products and services. All of the feedback you share here is monitored and reviewed by the AVEVA product managers.

To start, take a look at the ideas in the list below and VOTE for your favorite ideas submitted by other users. POST your own idea if it hasn’t been suggested yet. Include COMMENTS and share relevant business case details that will help our product team get more information on the suggestion. Please note that your ideas and comments are visible to all other users.


This page is for feedback specifically for AVEVA PI System. For links to our other feedback portals, please see the tab RESOURCES below.

ADD A NEW IDEA

Security

Showing 23

Have pre-made PI Identities with minimum permissions by default

It currently takes more effort to follow AVEVA's recommendation of setting minimum permissions for all PI service accounts than it is to use fewer service accounts with more permissions. To help steer PI administrators in the right direction, plea...
Kenneth Barber over 2 years ago in AVEVA™ PI Server / Security 2 No status

Do not require permission to PIPOINT if the permission is already covered by Point Security or Data Security

https://docs.osisoft.com/bundle/pi-server/page/permissions-required-for-tasks.html According to the documentation linked above, when permission to Point Security or Data Security is required, the same permission to PIPOINT is also required. This i...
Kenneth Barber over 2 years ago in AVEVA™ PI Server / Security 2 No status

Ability to manage non-impersonated linked tables without PI AF Server Admin privilegies

PI AF Admin would like grant permissions for users that are not level server admins to create and edit non-impersonated linked tables. Currently this only allowed for AF server admins or using impersonated linked tables. User guide: https://liv...
Guest over 2 years ago in AVEVA™ PI Server / Security 3 No status

OIDC authentication with federated accounts (through CONNECT) requires too many steps

Currently, it is a 5-step process to get authenticated. After the first authentication, it is only a 3-step process, but still clunky.
Laurie Dieffenbach 4 months ago in AVEVA™ PI Server / Security 0 No status

Auditviewer separation of roles

I want to separate the security roles between 1) the ability to run an Auditviewer report and (potentially) associate a change control record to a configuration change and 2) the PI Admin Role in order to minimize security risk.
Guest over 2 years ago in AVEVA™ PI Server / Security 1 No status

We need a method to send pi message log to syslog server

Provide a configurable export of PI Message log to syslog server.
Guest over 2 years ago in AVEVA™ PI Server / Security 0 No status

User rights for viewing analytics

In many cases analytics should not be visible to everyone having right to view an AF-Database. Should be possible to direct whom should have view access to analytics. This is an extension to the obivious right to change analytics :)
Guest over 2 years ago in AVEVA™ PI Server / Security 2 No status

Security tool that allows management of PI Data Archive, Vision, and AF security settings

PI System Administrators would benefit from a client or PI SMT extension that supports auditing and modifying user access. This includes mapping Active Directory roles to PI Identities, managing PI Database and Point access, managing AF Database a...
Guest over 2 years ago in AVEVA™ PI Server / Security 0 No status

Maximum security should be the default for the PI Data Archive and PI System Management Tools

Maximum security by default would help encourage security best practices by: Making the best decision for customers that do not know or care about security "Rewarding" security-conscious customers with not having to expend effort to maximize secur...
Kenneth Barber over 2 years ago in AVEVA™ PI Server / Security 0 No status

Have Platform Common services for PI use least privilege access on the Azure directory

Some Azure Active Directory (Entra ID) administrators will be hesitant to give the registered application for the AIM Server Directory.Read.All privileges. It should be feasible to give the application lesser privileges on the directory while stil...
Housnat Aboubacar 9 months ago in AVEVA™ PI Server / Security 0 No status