Skip to Main Content
AVEVA™ PI System™ Feedback Portal

Welcome to our feedback site!


We created this site to hear your enhancement ideas, suggestions and feedback about AVEVA products and services. All of the feedback you share here is monitored and reviewed by the AVEVA product managers.

To start, take a look at the ideas in the list below and VOTE for your favorite ideas submitted by other users. POST your own idea if it hasn’t been suggested yet. Include COMMENTS and share relevant business case details that will help our product team get more information on the suggestion. Please note that your ideas and comments are visible to all other users.


This page is for feedback specifically for AVEVA PI System. For links to our other feedback portals, please see the tab RESOURCES below.

Status Completed
Categories General
Created by Guest
Created on Aug 16, 2022

Enable the use of gMSA for PI Adapters running on Windows

In our environment, we plan to deploy PI Adapters on Windows Server class OS. We are in a strict minimum privileges environment hence we only make use of gMSA on all PI services. We do not want to make use of a domain service account where the password is known (by a few) and can be impersonated. PI Adapters should be enabled to make use of such gMSA type of account to run the service in a secure manner.
  • Attach files
  • Admin
    Jiyeon Hwang
    Reply
    |
    May 26, 2023

    Thank you for your input. We have implemented this feature in the recent release of AVEVA Adapter for OPC UA (1.4.0.196) and AVEVA Adapter for MQTT (1.3.0.103), where you can now use Kerberos authentication. This is related to the following idea: https://pisystem.feedback.aveva.com/ideas/PIADAPTERS-I-35. We will be rolling this out to the rest of the AVEVA Adapters with the next set of releases.

  • Gabriel Verreault
    Reply
    |
    Aug 16, 2022
    gMSA's can be used to run the PI Adapter service. That being said, if using PI Web API as an endpoint, the only supported authentication method is basic and would require entering credentials of user / service account with the required access on the destination AF/PIDA.