On the PIVision event-detail-page users can add comments and achnowledge events.
How is the security setup for this page?
Currently normal users are not able to add comment...
Thanks for posting on PI Square.
On the domain side, you'll need to make sure that the Vision Service Account is allowed to delegate to the AF Server.
On the AF Server side, you'll need to make sure that the end users have a mapping to an identity with read/write/annotate permissions to the Event Frames in the Database:
Please let me know what you find out from your system.
Hi Jesse Ru, when you say at the domain level what exactly do you mean? In my case, security in the AF identity has all the permissions you mention but I cannot comment on the events since Pi Vision 2019
Hi Dennys Jimenez,
One should have write access to the events frames in PI AF to acknowledge and comment the events via PIVison.
Hence I request you to verify your access levels to the events you are unable to comment via PIVision in PI AF security.
Open PI system explorer-> database -> Security -> verify to which identity you are mapped in AF -> then in Items configure select the eventframes and verify the security string whether your identity having proper permissions.
Kindly share what you found in your system to analyze the issue better.
If you question is specific to permissions required then would suggest checking below link for setting up required permissions on Event Frame template(Can be Acknowledged) and access permission for identity (Annotate)
PI Vision Event Acknowledgement & Annotation Permissions
To clarify on Domain Level Security:
You need to make sure that Kerberos and Kerberos Delegation is properly configured for the Vision Service Account. This means that you need to make sure that the Service Principal Names (SPN) are properly created for the Vision Service Account and that the Vision Service Account can delegate to the AF SPN.
For reference, please refer to: PI Vision Configuring Kerberos Delegation
Retrieving data ...