Yes you can! You can create an Identity in PI System Management Tools >Security> Identities, users and Groups. For example:
You can then map the users AD account to that PI mapping under Security > Mappings and Trusts.
Then on the PI Point security (PI SMT > PI Points > PI Builder), under data security you can give the identity read and write access:
Hope this helps,
Thanks for this detailed info. it helps a junior guy like myself when we can follow each step like you laid out.