リモートサーバから次のエラーが返されました:(401)Unauthorized
環境
- ONTAP 9
- ONTAP AVコネクタ1.0.6
問題
ONTAP AVコネクタ1.0.6が管理LIFに接続できない
REST API call to <ip-address> using account "<account>" failed. The remote server returned an error: (401) Unauthorized
ONTAP AV Connector log
- ONTAP / ASUPのログ:
APACHE-ERROR.log
[dot:error] [client <ip-address>:x] [vserver ID x] [service rest] Denied access to role 'vsadmin' for user '<account>'
[authz_core:error] [client <ip-address>:x] user encrypt: authorization failure for "/api/network/ip/interfaces":
[dot:error] [client <ip-address>:x] [vserver ID x] [service rest] Denied access to role 'vsadmin' for user '<account>'
[authz_core:error] [client <ip-address>:x] user encrypt: authorization failure for "/api/cluster":
ONTAP AV connector log (e.g. avshim.log)
Curl request to <ip-address> failed with http error code 401
Error 22: HTTP response code said error
Failed to fetch data LIF(s) from <ip-address>
Problem fetching vserver LIFs from mgmt-lif <ip-address>
vserver services web show
名前エントリにロールがリストされていないことを示しますrest
security
(role:none)。
例:
::> vserver services web show -vserver <vserver> -name rest
- ロールにはAPIへのアクセス権がなく
/api/cluster
、/api/network/ip/interfaces
::> security login show -user-or-group-name <account> -vserver <vserver> -instance
::> security login show -vserver <vserver> -role <role>
::> security login role show -vserver <vserver> -role <role> -cmddirname "network interface"
::> security login rest-role show -vserver <vserver> -role <role> -api /api/cluster
::> security login rest-role show -vserver <vserver> -role <role> -api /api/network/ip/interfaces