Endpoint Protection

 View Only
  • 1.  System Administrator getting 401-unauthorized error from API call

    Posted Mar 23, 2020 12:07 PM
    I am a System Administrator and while some API calls work, some are returning 401-Unathorized error.

    Get version info - works:
    https://xx.xx.xx.xx:8446/sepm/api/v1/version

    Get domain info - works:
    https://xx.xx.xx.xx:8446/sepm/api/v1/domains

    Get client info (method 1) - does not work:
    https://xx.xx.xx.xx:8446/sepm/api/v1/computers

    Get client info (method 2) - does not work:
    https://xx.xx.xx.xx:8446/sepm/api/v1/groups/FCBA64A90A1B2A1B01B4A6FE5DA8D8D6/computers


    Invoke-RestMethod : The remote server returned an error: (401) Unauthorized.


  • 2.  RE: System Administrator getting 401-unauthorized error from API call

    Posted Mar 23, 2020 03:04 PM
    Edited by alexandrpaliy Mar 23, 2020 03:04 PM
    Not sure if I'm talking about absolutely the same issue, but, at least, recently I've faced some related one.
    Taking an API reference as a background ( https://apidocs.symantec.com/home/saep#_symantec_endpoint_protection_manager_rest_api_reference ), methods 3.127 (GET /api/v1/stats/autoresolved/{reportType}/{startTime}/to/{endTime}) and 3.143 (GET /api/v1/version) worked fine.
    But, for example, method 3.65 (GET /api/v1/groups) resulted in "The user is not authorized to access this resource" (unfortunately, I don't remember, which HTTP response status it gave - 401 or not), despite the fact, that I was authorized to API as one of SEPM admins and that admin is able to do all admin's stuff via SEPM GUI.

    Did not open any support cases about this, though.


  • 3.  RE: System Administrator getting 401-unauthorized error from API call

    Posted Dec 08, 2020 08:06 PM
    I am having a similar issue was this ever resolved for you? Broadcom support told me they don't assist with API issues.


  • 4.  RE: System Administrator getting 401-unauthorized error from API call

    Posted 15 days ago

    There are 3 types of administrator accounts.  Make sure the account you use for the API call is a System Administrator.