search cancel

Getting Access denied pointing to row that doesn't take away access

book

Article ID: 254656

calendar_today

Updated On:

Products

CA Automic Workload Automation - Automation Engine CA Automic One Automation

Issue/Introduction

When running a JOBS object, the user is seeing the following when SECURITY_AUDIT_FAILURE has OBJECT_ACCESS set on:

U00000009 'JOBS.WIN.PS.SLEEP.100.33147956': Access denied
U00004519 Access violation details: Used filter: 'JOBS' .
U00004505 Access violation: User: '33147956/33147956' Object: 'JOBS.WIN.PS.SLEEP.100.33147956' Access type: 'U00909802 X' Reason: prohibition in authorization profile: '33147956/33147956'.

The user looks like they have access to the JOBS object and everything that's needed to run it though.  There is nothing in the USER or USERGROUP objects that show why there should be an access denied error

Environment

Release : 21.0.4

Cause

Access violation is on the Login column of the JOBS row

Resolution

Check the Logins allowed for the job by using the dropdown arrow in the upper right of the authorizations tab on the USER or USERGROUP and checking the "Login" object:

Once this is added, check that there's no Login object that is causing the problem:

Additional Information

In older versions where the Java UI was used, the Login column was shown by default.  With the switch to the AWI, this is no longer the case.  This is as designed.

Attachments