There should be provision of granting access to PI Identities or PI users on  PI Vision using PI Vision admin webpage.

We would like to change users often. Could we have a logout button or something similar?

When a user shares a display, give the option to allow them to share the data contained in the display (PI tags/AF elements and attributes) with the AF identities that the display is shared with.

Instead of a scrolling list of checkboxes, it would be helpful to be able to search for specific AF Identities to share displays with.

If a user doesn't have access to view the data associated with data items (tags/attributes) on a display, provide a way for them to be able to request access to the data.

If a user does not have access to any of the data items (tags/attributes) on a display, they should not be able to open that display.

As already implemented for subfolders, we would like to set permissions also on root folder "Home".

Use Case: We would like to make sure that only creation of new displays in subfolders is possible and not in home folder.

Have Coresight support mutli-tenancy (possibly as Software as a Service, SaaS) so individual tenants of the application can't access each other's displays/data.

In order to support multiple tenants, we need a way to isolate displays so that users can only see certain displays.

log out

A significant number of customers in my region are not using/don’t plan to adopt WIS as their authentication policy. As a result many of them are not using windows AD.

Customers need PI Vision to be more flexible: PI Vision pages can be integrated with their chosen SSO system, or at least don’t have to enter windows credentials when viewing a PI Vision page embedded into a Portal.

Add the ability to show or hide a ProcessBook import folder on the Coresight homepage based on AF Identity permissions.

If a display is in a folder, the list of identities with which the display can be shared will include all identities. However, the customer do not want to see all the Identities, only want to find all identities that the current user is a member of.

Add the option to whitelist certain domains from triggering the third-party warning pop-up. This could also be handled per session by end-users ("Remember my choice") instead of adding domains to a whitelist.

Current version of PI Vision has the dialog box hardcoded to trigger if a navigation link is not a link to another display.

Please create a way of sharing displays with users without having the display show up in "All Displays". Rather, the display should be private but only accessible through URL to a mapped group. This group could be PI World or a specific set of AF users.

PI Coresight 2016 allows 'Set Database Search Root' and 'Restrict Database Access' but is assignable only to individual users - too cumbersome to manage in a large system. Want to integrate with WIS so can use this to assign to previously defined AD groups (ex: based on user site/location) as this is how the PI access is assigned (AD group mapped to PI identity). Could potentially use the same functionality as the display group security which is based on AF identities.

Ability to restrict Pi Vision users to use the PI Data Archive tag search when building displays.
There exists a feature to restrict user access to AF Databases in the PIVision\admin\UserSettings. However, there is no way to restrict PI Vision users from the PI Data Archive.
Or be able to rename the PI DA symbol in the search.

The customer would like to prevent users with write access to PI Vision folders from being able to delete folders and sub-folders.

We have a TON of AF templates and not necessarily all of them will be used by our end users. It would be nice if there was a way to either view these templates by category or make them show/hide based on AF identities. Currently there is now way to hide a AF template in PI Vision without deleting it.

when I login for a long time and without action，automatic logout is necessary

As a PI Vision admin, I would like displays to automatically inherit the permissions of their parent folder so that permissions are set automatically when users save displays to the appropriate folder.

Currently permissions for folders and displays are not tied together but they can be propagated manually using the 'Propagate permissions' checkbox in the Folder Settings dialog.