I have a user that has started getting a 403 Forbidden error when trying to use the OpenAPI calls.  I replicated the issue with my own administrator account (which I am still able to login with on CAPC).  I am seeing this in the karaf.log on the DA:

ERROR | 80956328-3345234 | 2021-05-21 08:05:06,774 | AuthenticationServiceImpl | e.impl.AuthenticationServiceImpl 1268 | -services.authentication |       | Unable to validate user 'sean.admin' against Performance Center. The username or password may be incorrect or the user is not enabled (0).

The users are not disabled and passwords work to log into CAPC.

Release : 20.2

Component : PERFORMANCE MANAGEMENT INTEGRATIONS

User's password had expired

User password had expired

Customer setup user with a non expiring password