Good morning to everyone
We're facing an authorization issue with PIVision
PI Vision and AF Server on the same machine on company Intranet.
PI Vision apppools, PI Web API and crawler run under a domain account.
AF identities are mapped to AD groups.
AF Identities are mapped to AF databases to grant access
PIVision use AF identities to map "Publishers" and "Explorers"
Everything worked well until last week.
After a test we have the following:
1) Internet Explorer no longer works. Errors are: DLG_FLAGS_INVALID_CA. Ask password for three times and after HTTP Error401. The request resource requires user authentication.
2) Edge no longer works. Ask three times password and after HTTP Error401. The request resource requires user authentication.
3) Chrome : ask for UserID and password. After login IT WORKS!!!
4) Firefox: It works after added the site to About:config ---> network.automatic-ntlm-auth.trusted-uris
I don't know if this is related to Microsoft december update for Windows 10. Our machines are configured to auto-update.
Please note security in AF Server and PI Sistem Explorer works without issues. We'are able to assign rights using AD groups.