Learn about Data Archive security
- Last UpdatedNov 21, 2025
- 1 minute read
- PI System
- PI Server 2024 R2
- PI Server
Windows integrated security (WIS) allows you to manage Data Archive authentication through Windows and Microsoft Active Directory (AD). This security model improves Data Archive security, reduces your management workload, and provides users a single-sign on experience.
Note: If you choose to keep your existing security configuration, you can gradually migrate to the latest security model when needed. Although the password mechanism performs as designed in the older security models, weakness exists due to the use of a proprietary cypher developed in the 1990s that has not been modified to keep up with modern cryptographic advances. In short, the explicit login as an authentication method is not secure from malicious actors. Similarily, PI trust authentication is a weak form of authentication and should be avoided unless technically required for application compatibility.
Related Links
- Learn about Data Archive security
- Learn about configuring security on a new Data Archive installation
- Understand PI interface connections through PI API
- Learn about security for Data Archive collectives
- List of required permissions for PI Server tasks
- Configure OIDC for upgrades
- Checklist: Configure OIDC for new installations
- Checklist: Configure Windows authentication for upgrades
- Checklist: Configure Windows authentication for new installations
- Understand how to tighten security for Data Archive
- Learn about product access permissions and configuration issues
- Understand PI MDB to AF Transition