Can someone clarify the necessary permissions for s user to create a manual group in a custom site via the platform REST API? It works with MO but not with Non-MO that has writer permission to the site and Custom Content creation rights.
Manual Groups are always in the operatorâs opsite, or in the action site for master operators, if that helps. They arenât created in custom sites.
so for a post to /computergroups/{site type}/{site name} the site type would be opsite and the site name would be the userâs operator site?
Yes, an example would be
https://bes-root.example.com:52311/api/computergroups/operator/BESUser3@example.com
still no luck. getting a 403 posting to https://root:52311/api/computergroup/operator/<the_name_of_the_local_bes_user_making_the_call>
{"format":"Access is denied","arguments":[]}
I logged into the bes console with the local user and the âcreate manual groupâ options were greyed out. After granting the user the âCan Create Actionsâ permission, it could then create the manual group.
Is that expected? Iâd rather this user not have the ability to push content. Running v9.5.13
I believe thatâs expectedâŚa manual group is also an action, in a roundabout way.
Thanks for the assistance. I created an enhancement request to try and get that split up to be multiple permissions
https://bigfix-ideas.hcltechsw.com/ideas/BFP-I-149
1 Like