Question
AIG Shared Services, Inc.
PH
Last activity: 18 Mar 2018 19:48 EDT
AuthorizationException
We are getting the below error in our Production Logs:
(e_Obj_Report_Definition.Action) ERROR Error in Obj-Open
com.pega.pegarules.pub.database.AuthorizationException: インスタンス RULE-OBJ-REPORT-DEFINITION SYSTEM-LOCKS GETUSERLOCKFORERRORINQUIRY #20171128T010425.300 GMT を開く権限がありません
I have checked other posts related to this however, the solutions provided have not worked.
The customized unauthenticated access group has access to System-Locks (PegaRULES:SysAdm4 role). The access group that the user is using is PegaRULES:User4 which does not have access to System-Locks. However, the users in non prod have the same setup but is not throwing this exception at all after trying to replicate in the lower environments.
Pegasystems Inc.
IN
Hi @HarsimranP,
Thanks for posting on PSC.
Have you configured access roles?
Unauthenticated access group or Customized Unauthenticated access group should have access roles which will have prod level(5) to view report and others.
Access Roles:-
An access role defines the classes that a user can view, update, and delete through the Access of Role to Object and Access Deny rule types.
Hope it helps, kindly notify if it does.
Regards,
Asif
AIG Shared Services, Inc.
PH
Hi Asif,
Thank you for the reponse. The Customized Access Group has the PegaRULES:SysAdm4 access role which has Production level (5) access to all.
Setup in Production for users uses PegaRULES:User4 access role which does not have prod level access to System-Locks. I have the same setup in the lower environments and tried replicating the issue, however the issue only occurred in Production. Not sure why is there a difference in behavior though. Should we modify the PegaRULES:User4 access group to have Production level (5) access to all as well?
Pegasystems Inc.
IN
Refer this post to understand the concept of access group and roles:-
https://pdn.pega.com/community/product-support/question/work-groups-access-groups-roles