PI AF database security

To view a PI AF database, an identity must have at least read permissions to the database object. You configure permissions individually for each database, or for the entire databases collection.

Beginning with PI AF 2017 R2, it is no longer necessary for users to have write permission on a PI AF database in order to have write permission on other objects in the database. Users need only be assigned an identity with write access to objects such as elements to be able to edit them. To prevent users from having write access to specific objects, assign them to an identity with read-only access to those objects.