Secure your PI Vision site with HTTPS

We recommend that you enable Transport Layer Security (TLS) / Secure Sockets Layer (SSL) for your AVEVA PI Vision website to encrypt your communications over HTTPS; this is required by most mobile clients. For more information, see PI Data Archive server authentication on mobile devices.

To fully secure access to AVEVA PI Vision, use a digital certificate obtained from a trusted third-party registrar. Though the installation program can create a self-signed certificate, this certificate will not be trusted by browser clients and will result in certificate warnings when users visit PI Vision.

By default, during a new installation, AVEVA PI Vision configures the IIS website designated for AVEVA PI Vision to use HTTPS.

When upgrading a previous version of AVEVA PI Vision that did not use HTTPS, the upgraded site is not automatically configured for HTTPS. To manually configure the IIS site that hosts AVEVA PI Vision to use TLS/SSL, see the following Microsoft and Digicert articles:

• How to implement SSL in IIS

• SSL Certificate Installation in Microsoft IIS 8 and IIS 8.5

This product uses cookies which could have legal implications based on a licensee's geographic location. Consult with your legal department to make sure you are compliant with relevant laws, rules and regulations, including but not limited to data protection and cookie directives. If you configure AVEVA PI Vision not to use SSL, you can disable secure cookies for AVEVA PI Vision. Locate and edit the setting below, and set the value of requireSSL to false:

<configuration>
<system.web>
<httpCookies httpOnlyCookies="true" requireSSL="false"/>
</system.web>
</configuration>