Configure Vision Display to Force Secure https Access
Add the ability via a checkbox to the display page properties (ie: keywords, owner, who can view, read-only setting, etc) to force access to that display as https rather than http. This would provide a couple different benefits...
(A) for displays that contain an XY Plot or Events Table, which require an https connection, it will prevent a user from accessing the page using http only and find it to not work correctly.
(B) for displays that contain more sensitive data, it will prevent non-SSL access to the page.
It is recommended that HTTPS be enabled and enforced at the web site level. By default, PI Vision will be configured to use HTTPS, however, if you install to a site that has an existing HTTP binding this will not be removed during the installation process.
Enforcing HTTPS can be done done in IIS Manager by removing any HTTP bindings on the PI Vision web site and by enabling the ‘Require SSL’ setting.
As of PI Vision 2019, the XY Plot and Events Table symbols use the same data access mechanism as the other symbols so there are no longer differences in the connections that different symbols require.
Kenneth Barber commented
It would be better to force HTTPS on all of PI Vision rather than force it per display. Where I work, if you don't use an HTTPS link, you can't connect to PI Vision. We eliminated HTTP support, so we didn't even have an HTTP-to-HTTPS redirect.
I forget the exact steps to get PI Vision to that point, but it involved going into the Internet Information Services (IIS) Manager on the PI Vision server.