OSIsoft GitHub
-
Support security baselining
As a PI administrator, I need to baseline the security configuration of my PI System to ensure OSIsoft security best practices are followed.
Below is a list of requested features.
Baseline verification (read-only) for PI Data Archive:
- PI Data Archive Table Security - examines the database security of the PI Data Archive and flag any ACLs that contain access for PIWorld as weak.
- PIADMIN role - verify that the piadmin PI user is not used in any mappings or trusts.
- PI Data Archive Version - verify that the PI Data Archive is using the most recent release. …27 votes -
Allow support for load balanced AF servers
In our environment we have an archive Collective and 2 AF servers coordinated by a network load balancer. The Tests should support a system with load balanced AF servers.
It appears, that even if you set the value AFServer in app.config to one of the 2 AF servers, the pre-checks will still fail if the local instance of System Explorer is connected to AF using the load balancer as the host. I get errors such as these (PIAF is the name of the load balancer).
…OSIsoft.PISystemDeploymentTests.PreliminaryChecks.CheckRtqpEngineServiceTest [STARTING]
System.InvalidOperationException : Cannot open Service Control Manager on computer 'PIAFTest'. This operation might4 votes -
Make the test reports actionable
Once the test runs and the report is generated, it is not easy to interpret potential failures that are included in the report and the only option is to contact techsupport. It is useful to make the report more actionable to know how to go about troubleshooting potential failures without the need to reach out to Techsupport.
3 votes -
Allow different host names and URLs for PI Web API
Our PI Web API uses a DNS. The certificate we use is only valid for the DNS alias, not the machine host name. So in our system, we have the need to use the host name for some pre-checks, and the DNS URL for other pre-checks. Can you please separate these two things out in app.config?
2 votes -
Support Claims Based Authentication in Vision
PI System Deployment Tests will not pass pre-checks in our system because we have configured PI Vision to use claims-based authentication. SDT should support this message as claims is an IT standard.
2 votes
- Don't see your idea?