Learn about Data Archive security
- Last UpdatedFeb 12, 2025
- 1 minute read
- PI System
- PI Server 2024 R2
- PI Server
OpenID Connect (OIDC)
OpenID Connect (OIDC) offers claims-based authentication, a modern approach to user identification and authentication. OIDC is an identity layer built on top of OAuth 2.0 which allows a third-party application, an identity provider (IdP), to verify the user's identity before establishing a PI System connection. With OIDC, client verification is handled by the IdP. This approach ensures that only trusted parties gain access to Data Archive and PI System resources.
This security model improves Data Archive security, reduces your management workload, and provides users a single-sign on experience.
Windows integrated security (WIS)
Windows integrated security (WIS) allows you to manage Data Archive authentication through Windows and Microsoft Active Directory (AD).
The Windows integrated security model relies on Windows security for authentication, but provides its own authorization to PI objects. This is accomplished through two structures: PI identities for which you define PI permissions, and PI mappings that provide the mapping from Windows users and groups to PI identities.
In This Topic
Related Links
- Authentication
- What are PI identities and mappings?
- Understand advantages of Windows Integrated Security (WIS)
- Understand how upgrading affects PI clients and PI interfaces
- Learn about Data Archive administrative tools
- Which administrative tools are compatible with Data Archive
- Learn how to maintain backwards-compatible access permissions
- How will PI API 2016 for Windows Integrated Security affect clients and interfaces?