Is it possible to create a tour via PIML that is accessible by all user groups so that anyone in the company can enter data, but not be an admin?
Did you mean a tour run or a tour in general?
To create a tour, you must be a member of the Admin User Group. To enter data in a run, you need PI Mapping/PI Trusts.
For PI ML Web, Could the following information be related to your needs?
Set the parameter, BypassAuth = true, to Web.Config under the appSettings.
Refer to PI ML Web configuration - Configure tours
Sorry, yes, I meant a tour run for PIML web. According to the link you sent, setting BypassAuth to true allows all users to "perhaps override Full Access Group and Data Entry Group associations you might have previously set up for tours in the PI Manual Logger PC client application." What exactly does this mean? I am also under the impression that setting BypassAuth to true allows all users to have access to all tours and enable them to edit or delete data from all previous tour runs as well. Is this correct? And if so, is there an alternative solution to allow all users to enter data into a tour run, but not have any more access beyond that? Thanks
I believe the phrase means that PI ML Web will do the service for users instead of trying to impersonate your users' permissions. And given powerful enough permission to PIML web service accounts(Application pool), it may be able to edit/delete data.
It won't distinguish the difference between admins or users so it may not be the right choice for you. Were you able to find below information using your PC edition?
User Management and security - User groups
There is a separate group for data entry only. In this case, you would be going for a scenario #2 in this KB.
KB01263 - How to configure security for PI Manual Logger Web
Retrieving data ...