Insufficient permission when accessing REST API

Document ID : KB000004202
Last Modified Date : 14/02/2018
Show Technical Document Details
Issue:

Web Service REST API never prompted for BASIC authentication and immediately defaulted to the error:
Insufficient permission for operation - permission required:Web Service


Examine <Nimsoft>\probes\service\wasp\conf\web.xml.
Look for the presence of any <security-constraint> directives like the following:
<security-constraint>
   <web-resource-collection>
      <web-resource-name>Entire Application</web-resource-name>
      <url-pattern>/*</url-pattern>
   </web-resource-collection>
   <user-data-constraint>
      <transport-guarantee>CONFIDENTIAL</transport-guarantee>
   </user-data-constraint>
</security-constraint>


These directives are not present in the default web.xml.  They are used for HTTPS redirection of UMP requests.

Environment:
Any UIM Version
Resolution:

To resolve this issue, remove the above <security-constraint> directive from the file referenced above, and instead, place it in the file <Nimsoft>\probes\service\wasp\webapps\ROOT\WEB-INF\web.xml instead, it will work properly while still allowing UMP requests to be redirected to HTTPS appropriately.