The customer's attempt to log into CEM failed with the error: CEMR202E - Unable to communicate with Compliance Event Manager Web Services
Release : 6.0
Component : CA COMPLIANCE EVENT MANAGER
The CEMETOM stc output showed an access violation to the CEM.POLICY.CONFIGURATION resource.:
LDAPException: Server Message: LDP7005E User T3RCH01 denied access to class CACEM, entity CEM.POLICY.CONFIGURATION, access level READ, SAF=8/8/0
This exception is preceded by a call in the LDAPAuthenticationProvider class and the exception that is thrown is on a line just after the security check it made.
The exception is occurring because the customer's UserID did not have read access to the CEM.POLICY.CONFIGURATION resource.
The customer's UserID needed security access to the CEM.POLICY.CONFIGURATION resource. For the logon process, read access would be sufficient. However, read and write access would be necessary in order to update anything within the configuration section of the GUI.