Insufficient permission when accessing REST API

Document ID : KB000004202
Last Modified Date : 16/10/2018
Show Technical Document Details
Issue:

Web Service REST API never prompted for BASIC authentication and immediately defaulted to the error:
Insufficient permission for operation - permission required:Web Service


Examine <Nimsoft>\probes\service\wasp\conf\web.xml.
Look for the presence of any <security-constraint> directives like the following:
<security-constraint>
   <web-resource-collection>
      <web-resource-name>Entire Application</web-resource-name>
      <url-pattern>/*</url-pattern>
   </web-resource-collection>
   <user-data-constraint>
      <transport-guarantee>CONFIDENTIAL</transport-guarantee>
   </user-data-constraint>
</security-constraint>


These directives are not present in the default web.xml.  They are used for HTTPS redirection of UMP requests.

Environment:
Any UIM Version
Resolution:

To resolve this issue, remove the above <security-constraint> directive from the file referenced above, and instead, place it in the file <Nimsoft>\probes\service\wasp\webapps\ROOT\WEB-INF\web.xml instead, it will work properly while still allowing UMP requests to be redirected to HTTPS appropriately.

It is also possible for this message to be returned when the ACLs need to be reset. To do this open Infrastructure Manager, and go to Security-> Manage ACLs.
From here, click "OK" without making any changes.
This causes a reset of the user permissions and corrects the issue.