Hi there,
We have set up a new API user that will allow us to force start jobs through a new web API GUI that we have created. We have also implemented a couple of EEM policies, specifically we have added a new explicit grant on the as-group that will only allow our user to run jobs that have a group = ASI_JOBS or RISKJOBS. We had also added an explicit deny to the same user that stops any other job from running.
This was working great until we then decided to try and add in new policies to lock down owners to specific owners in our development environment. We switched off our default owner policy (under as-owner) and added in the specific owners we wanted. We did not add in our API user to this list and when we then try and run a POST command to force start our jobs, it comes back with a 403 forbidden error.
Does anyone have any ideas as to why implementing a new as-owner policy would stop the API user from running a POST command? Am I setting up the policies incorrectly or does anyone have ideas of how to set up these things.
Any help would be greatly appreciated. I have added screenshots to show the policy set up.
------------------------------
Cheers
Richie
------------------------------