Configure security for a single PI AF database

For a single database, configure List of access permissions for identities that need access to its collections and objects.

1. On the toolbar, click the Database button.

2. In the Select Database window, right-click a database in the Databases list and click Security.

   In the Items to Configure list of the Security Configuration window, the database and every collection in the database is selected.

3. Optional. Clear any collection that you do not wish to modify from their default settings and assigned identities.

4. In the Identities list, review existing identities and validate their permissions. You can also add and remove identities, as needed.

   To ...	Do this ...
   Add or modify permissions of existing identities	Select an identity in the Identities list. In the Permissions for Identity list, select or clear the Allow or Deny check boxes beside the permissions you wish to set. Repeat for each identity.
   Add another identity to the Identities list	Click Add. In the Select Identity window, select the identity you wish to add. Click OK. The identity is added to the list. In the Permissions for Identity list, set the access permissions as needed (the default setting is all are checked). Tip: If you need to create a new identity and mapping, click New Identity. For more information, see PI AF identities and mappings.
   Remove an identity from the Identities list	Select an identity in the Identities list. Click Remove.

5. In the Child Permissions section, choose one of the permission inheritance options. For more information, see Understand permission inheritance of element objects.

6. Optional. To view all of a user's access permissions on items in PI AF based on his or her current PI AF identity mappings, click the Effective Access tab.

7. Optional. In the Domain User field, enter a user's Windows domain name whose permissions you want to view.

8. Optional. Press Tab or Enter to validate your entry.

9. Click OK.