-
Notifications
You must be signed in to change notification settings - Fork 468
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ERROR: 403: Not Authorized to access this resource/api - forbidden #461
Comments
Hello https://www.googleapis.com/auth/apps.groups.settings Bye |
Thanks for the response but that link does not go anywhere |
What do these commands output?
gam oauth info
gam user someuser@yourdaomain.com check serviceaccount
Riss
…On Fri, Mar 31, 2017 at 5:01 AM, jhavens12 ***@***.***> wrote:
Thanks for the response but that link does not go anywhere
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8LxL-bw29VsEt_HVwXogfmy4Qzrviks5rrOr9gaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
|
Thanks that did eventually work even though I had tried it earlier last week. so I'm not sure whats different now but it is working correctly. Thank you. |
This did the trick for me! (and I loved the self-destruct countdown :-) :-) Thank you, Jay - and thanks for GAM! It's essential. Karla B |
What command are you trying to execute?
Ross
…On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.***> wrote:
Jay, I'm having the same 403 issue with 4.32. I have run the oauth revoke
and info domain a couple of times. I'm showing 30 scopes in my oauth info
and the user I'm having issues with is showing PASS in all areas of check
service account.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8LyoTfLp048kuC-YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
|
The command is at the bottom of my message. It's this one.
gam csv e:/export/googlebrown-pass.csv gam update user ~Email password ~Password changepassword off >> RESULT-SetPasswords.txt
Sent from my Verizon, Samsung Galaxy smartphone
…-------- Original message --------
From: Ross Scroggs <notifications@github.com>
Date: 11/28/17 4:55 PM (GMT-05:00)
To: jay0lee/GAM <GAM@noreply.github.com>
Cc: Ryan Kelley <kelleyr@bas-k12.org>, Comment <comment@noreply.github.com>
Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this resource/api - forbidden (#461)
What command are you trying to execute?
Ross
On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.***> wrote:
Jay, I'm having the same 403 issue with 4.32. I have run the oauth revoke
and info domain a couple of times. I'm showing 30 scopes in my oauth info
and the user I'm having issues with is showing PASS in all areas of check
service account.
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8LyoTfLp048kuC-YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#461 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgfqfFJFAWR1_Nsz1g5VwrM-xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
|
Do the following: gam oauth info
The last line of the output is: G Suite Admin: user@domain.com
Fill in that user name in this command: gam print admins user
user@domain.com
What roles does user@domain.com have? My super user has: _SEED_ADMIN_ROLE,
_GROUPS_ADMIN_ROLE, _SERVICE_ADMIN_ROLE
What is the scopeType for each role?
Ross
…On Tue, Nov 28, 2017 at 2:21 PM, kc8zpi ***@***.***> wrote:
The command is at the bottom of my message. It's this one.
gam csv e:/export/google brown-pass.csv gam update user ~Email password
~Password changepassword off >> RESULT-SetPasswords.txt
Sent from my Verizon, Samsung Galaxy smartphone
-------- Original message --------
From: Ross Scroggs ***@***.***>
Date: 11/28/17 4:55 PM (GMT-05:00)
To: jay0lee/GAM ***@***.***>
Cc: Ryan Kelley ***@***.***>, Comment ***@***.***
>
Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
resource/api - forbidden (#461)
What command are you trying to execute?
Ross
On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.***> wrote:
> Jay, I'm having the same 403 issue with 4.32. I have run the oauth revoke
> and info domain a couple of times. I'm showing 30 scopes in my oauth info
> and the user I'm having issues with is showing PASS in all areas of check
> service account.
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub
> <#461 (comment)>, or
mute
> the thread
> <https://github.com/notifications/unsubscribe-auth/AIU8LyoTfLp048kuC-
YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
> .
>
--
Ross Scroggs
***@***.***
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<https://github.com/
GAM-team/GAM#461#issuecomment-347676585>, or mute the thread<
https://github.com/notifications/unsubscribe-auth/AgfqfFJFAWR1_Nsz1g5VwrM-
xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8L1Nm6h7zPTEouED76LTvX8NA0rXoks5s7IdlgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
|
My admin account just had the _SEED_ADMIN_ROLE?. I added Services Admin, User Management, Group Admin. I am still getting the ERROR: 403: Not Authorized to access this resource/api - forbidden?
…________________________________
From: Ross Scroggs <notifications@github.com>
Sent: Tuesday, November 28, 2017 5:35 PM
To: jay0lee/GAM
Cc: Ryan Kelley; Comment
Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this resource/api - forbidden (#461)
Do the following: gam oauth info
The last line of the output is: G Suite Admin: user@domain.com
Fill in that user name in this command: gam print admins user
user@domain.com
What roles does user@domain.com have? My super user has: _SEED_ADMIN_ROLE,
_GROUPS_ADMIN_ROLE, _SERVICE_ADMIN_ROLE
What is the scopeType for each role?
Ross
On Tue, Nov 28, 2017 at 2:21 PM, kc8zpi ***@***.***> wrote:
The command is at the bottom of my message. It's this one.
gam csv e:/export/google brown-pass.csv gam update user ~Email password
~Password changepassword off >> RESULT-SetPasswords.txt
Sent from my Verizon, Samsung Galaxy smartphone
-------- Original message --------
From: Ross Scroggs ***@***.***>
Date: 11/28/17 4:55 PM (GMT-05:00)
To: jay0lee/GAM ***@***.***>
Cc: Ryan Kelley ***@***.***>, Comment ***@***.***
>
Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
resource/api - forbidden (#461)
What command are you trying to execute?
Ross
On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.***> wrote:
> Jay, I'm having the same 403 issue with 4.32. I have run the oauth revoke
> and info domain a couple of times. I'm showing 30 scopes in my oauth info
> and the user I'm having issues with is showing PASS in all areas of check
> service account.
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub
> <#461 (comment)>, or
mute
> the thread
> <https://github.com/notifications/unsubscribe-auth/AIU8LyoTfLp048kuC-
YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
> .
>
--
Ross Scroggs
***@***.***
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<https://github.com/
GAM-team/GAM#461#issuecomment-347676585>, or mute the thread<
https://github.com/notifications/unsubscribe-auth/AgfqfFJFAWR1_Nsz1g5VwrM-
xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8L1Nm6h7zPTEouED76LTvX8NA0rXoks5s7IdlgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#461 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgfqfMppJ_hTDvqQ5niGW4Yo05ie4z8qks5s7IqYgaJpZM4MuvS6>.
|
From your gam oauth info, does the domain from: G Suite Admin:
user@domain.com
Match the domain of the test user?
Ross
…On Tue, Nov 28, 2017 at 3:44 PM, kc8zpi ***@***.***> wrote:
My admin account just had the _SEED_ADMIN_ROLE?. I added Services Admin,
User Management, Group Admin. I am still getting the ERROR: 403: Not
Authorized to access this resource/api - forbidden?
________________________________
From: Ross Scroggs ***@***.***>
Sent: Tuesday, November 28, 2017 5:35 PM
To: jay0lee/GAM
Cc: Ryan Kelley; Comment
Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
resource/api - forbidden (#461)
Do the following: gam oauth info
The last line of the output is: G Suite Admin: ***@***.***
Fill in that user name in this command: gam print admins user
***@***.***
What roles does ***@***.*** have? My super user has: _SEED_ADMIN_ROLE,
_GROUPS_ADMIN_ROLE, _SERVICE_ADMIN_ROLE
What is the scopeType for each role?
Ross
On Tue, Nov 28, 2017 at 2:21 PM, kc8zpi ***@***.***> wrote:
> The command is at the bottom of my message. It's this one.
>
> gam csv e:/export/google brown-pass.csv gam update user ~Email password
> ~Password changepassword off >> RESULT-SetPasswords.txt
>
>
>
> Sent from my Verizon, Samsung Galaxy smartphone
>
>
> -------- Original message --------
> From: Ross Scroggs ***@***.***>
> Date: 11/28/17 4:55 PM (GMT-05:00)
> To: jay0lee/GAM ***@***.***>
> Cc: Ryan Kelley ***@***.***>, Comment <
***@***.***
> >
> Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
> resource/api - forbidden (#461)
>
> What command are you trying to execute?
>
> Ross
>
> On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.***>
wrote:
>
> > Jay, I'm having the same 403 issue with 4.32. I have run the oauth
revoke
> > and info domain a couple of times. I'm showing 30 scopes in my oauth
info
> > and the user I'm having issues with is showing PASS in all areas of
check
> > service account.
> >
> > -
> > You are receiving this because you commented.
> > Reply to this email directly, view it on GitHub
> > <#461 (comment)>, or
> mute
> > the thread
> > <https://github.com/notifications/unsubscribe-auth/AIU8LyoTfLp048kuC-
> YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
> > .
> >
>
>
>
> --
> Ross Scroggs
> ***@***.***
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub<https://github.com/
> GAM-team/GAM#461#issuecomment-347676585>, or mute the thread<
> https://github.com/notifications/unsubscribe-
auth/AgfqfFJFAWR1_Nsz1g5VwrM-
> xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub
> <#461 (comment)>, or
mute
> the thread
> <https://github.com/notifications/unsubscribe-auth/
AIU8L1Nm6h7zPTEouED76LTvX8NA0rXoks5s7IdlgaJpZM4MuvS6>
> .
>
--
Ross Scroggs
***@***.***
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<https://github.com/
GAM-team/GAM#461#issuecomment-347687046>, or mute the thread<
https://github.com/notifications/unsubscribe-auth/AgfqfMppJ_
hTDvqQ5niGW4Yo05ie4z8qks5s7IqYgaJpZM4MuvS6>.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8L3abHM1_uQAQR-8wOf3ugS2NqVHsks5s7JrDgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
|
No. The G suite admin is my admin@domain account and my test user is a new student account. Sorry for the confusion .
…Sent from my iPad
On Nov 28, 2017, at 7:20 PM, Ross Scroggs <notifications@github.com<mailto:notifications@github.com>> wrote:
From your gam oauth info, does the domain from: G Suite Admin:
user@domain.com<mailto:user@domain.com>
Match the domain of the test user?
Ross
On Tue, Nov 28, 2017 at 3:44 PM, kc8zpi ***@***.******@***.***>> wrote:
My admin account just had the _SEED_ADMIN_ROLE?. I added Services Admin,
User Management, Group Admin. I am still getting the ERROR: 403: Not
Authorized to access this resource/api - forbidden?
________________________________
From: Ross Scroggs ***@***.******@***.***>>
Sent: Tuesday, November 28, 2017 5:35 PM
To: jay0lee/GAM
Cc: Ryan Kelley; Comment
Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
resource/api - forbidden (#461)
Do the following: gam oauth info
The last line of the output is: G Suite Admin: ***@***.******@***.***>
Fill in that user name in this command: gam print admins user
***@***.******@***.***>
What roles does ***@***.******@***.***> have? My super user has: _SEED_ADMIN_ROLE,
_GROUPS_ADMIN_ROLE, _SERVICE_ADMIN_ROLE
What is the scopeType for each role?
Ross
On Tue, Nov 28, 2017 at 2:21 PM, kc8zpi ***@***.******@***.***>> wrote:
> The command is at the bottom of my message. It's this one.
>
> gam csv e:/export/google brown-pass.csv gam update user ~Email password
> ~Password changepassword off >> RESULT-SetPasswords.txt
>
>
>
> Sent from my Verizon, Samsung Galaxy smartphone
>
>
> -------- Original message --------
> From: Ross Scroggs ***@***.******@***.***>>
> Date: 11/28/17 4:55 PM (GMT-05:00)
> To: jay0lee/GAM ***@***.******@***.***>>
> Cc: Ryan Kelley ***@***.******@***.***>>, Comment <
***@***.******@***.***>
> >
> Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
> resource/api - forbidden (#461)
>
> What command are you trying to execute?
>
> Ross
>
> On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.******@***.***>>
wrote:
>
> > Jay, I'm having the same 403 issue with 4.32. I have run the oauth
revoke
> > and info domain a couple of times. I'm showing 30 scopes in my oauth
info
> > and the user I'm having issues with is showing PASS in all areas of
check
> > service account.
> >
> > -
> > You are receiving this because you commented.
> > Reply to this email directly, view it on GitHub
> > <#461 (comment)>, or
> mute
> > the thread
> > <https://github.com/notifications/unsubscribe-auth/AIU8LyoTfLp048kuC-
> YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
> > .
> >
>
>
>
> --
> Ross Scroggs
> ***@***.******@***.***>
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub<https://github.com/
> GAM-team/GAM#461#issuecomment-347676585>, or mute the thread<
> https://github.com/notifications/unsubscribe-
auth/AgfqfFJFAWR1_Nsz1g5VwrM-
> xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub
> <#461 (comment)>, or
mute
> the thread
> <https://github.com/notifications/unsubscribe-auth/
AIU8L1Nm6h7zPTEouED76LTvX8NA0rXoks5s7IdlgaJpZM4MuvS6>
> .
>
--
Ross Scroggs
***@***.******@***.***>
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<https://github.com/
GAM-team/GAM#461#issuecomment-347687046>, or mute the thread<
https://github.com/notifications/unsubscribe-auth/AgfqfMppJ_
hTDvqQ5niGW4Yo05ie4z8qks5s7IqYgaJpZM4MuvS6>.
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8L3abHM1_uQAQR-8wOf3ugS2NqVHsks5s7JrDgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com<mailto:ross.scroggs@gmail.com>
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#461 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgfqfKjpdXx95DYyICutG_rTqb-S0cBqks5s7KMwgaJpZM4MuvS6>.
|
If the two domains are different, how are they related?
A Google admin can only administer the primary domain and subdomains.
What does gam print domains show?
Ross
…On Tue, Nov 28, 2017 at 4:24 PM, kc8zpi ***@***.***> wrote:
No. The G suite admin is my ***@***.*** account and my test user is a
new student account. Sorry for the confusion .
Sent from my iPad
On Nov 28, 2017, at 7:20 PM, Ross Scroggs ***@***.***<
***@***.***>> wrote:
From your gam oauth info, does the domain from: G Suite Admin:
***@***.******@***.***>
Match the domain of the test user?
Ross
On Tue, Nov 28, 2017 at 3:44 PM, kc8zpi ***@***.***<mailto:
***@***.***>> wrote:
> My admin account just had the _SEED_ADMIN_ROLE?. I added Services Admin,
> User Management, Group Admin. I am still getting the ERROR: 403: Not
> Authorized to access this resource/api - forbidden?
>
>
>
> ________________________________
> From: Ross Scroggs ***@***.***<mailto:
***@***.***>>
> Sent: Tuesday, November 28, 2017 5:35 PM
> To: jay0lee/GAM
> Cc: Ryan Kelley; Comment
>
> Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
> resource/api - forbidden (#461)
>
> Do the following: gam oauth info
> The last line of the output is: G Suite Admin: ***@***.***<mailto:
***@***.***>
> Fill in that user name in this command: gam print admins user
> ***@***.******@***.***>
> What roles does ***@***.******@***.***> have? My super
user has: _SEED_ADMIN_ROLE,
> _GROUPS_ADMIN_ROLE, _SERVICE_ADMIN_ROLE
> What is the scopeType for each role?
>
> Ross
>
>
> On Tue, Nov 28, 2017 at 2:21 PM, kc8zpi ***@***.***<
***@***.***>> wrote:
>
> > The command is at the bottom of my message. It's this one.
> >
> > gam csv e:/export/google brown-pass.csv gam update user ~Email password
> > ~Password changepassword off >> RESULT-SetPasswords.txt
> >
> >
> >
> > Sent from my Verizon, Samsung Galaxy smartphone
> >
> >
> > -------- Original message --------
> > From: Ross Scroggs ***@***.***<mailto:
***@***.***>>
> > Date: 11/28/17 4:55 PM (GMT-05:00)
> > To: jay0lee/GAM ***@***.******@***.***>
>
> > Cc: Ryan Kelley ***@***.******@***.***>>,
Comment <
> ***@***.******@***.***>
> > >
> > Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
> > resource/api - forbidden (#461)
> >
> > What command are you trying to execute?
> >
> > Ross
> >
> > On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.***<
***@***.***>>
> wrote:
> >
> > > Jay, I'm having the same 403 issue with 4.32. I have run the oauth
> revoke
> > > and info domain a couple of times. I'm showing 30 scopes in my oauth
> info
> > > and the user I'm having issues with is showing PASS in all areas of
> check
> > > service account.
> > >
> > > -
> > > You are receiving this because you commented.
> > > Reply to this email directly, view it on GitHub
> > > <#461 (comment)>,
or
> > mute
> > > the thread
> > > <https://github.com/notifications/unsubscribe-
auth/AIU8LyoTfLp048kuC-
> > YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
> > > .
> > >
> >
> >
> >
> > --
> > Ross Scroggs
> > ***@***.******@***.***>
> >
> > -
> > You are receiving this because you commented.
> > Reply to this email directly, view it on GitHub<https://github.com/
> > GAM-team/GAM#461#issuecomment-347676585>, or mute the thread<
> > https://github.com/notifications/unsubscribe-
> auth/AgfqfFJFAWR1_Nsz1g5VwrM-
> > xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
> >
> > -
> > You are receiving this because you commented.
> > Reply to this email directly, view it on GitHub
> > <#461 (comment)>, or
> mute
> > the thread
> > <https://github.com/notifications/unsubscribe-auth/
> AIU8L1Nm6h7zPTEouED76LTvX8NA0rXoks5s7IdlgaJpZM4MuvS6>
> > .
> >
>
>
>
> --
> Ross Scroggs
> ***@***.******@***.***>
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub<https://github.com/
> GAM-team/GAM#461#issuecomment-347687046>, or mute the thread<
> https://github.com/notifications/unsubscribe-auth/AgfqfMppJ_
> hTDvqQ5niGW4Yo05ie4z8qks5s7IqYgaJpZM4MuvS6>.
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub
> <#461 (comment)>, or
mute
> the thread
> <https://github.com/notifications/unsubscribe-auth/AIU8L3abHM1_uQAQR-
8wOf3ugS2NqVHsks5s7JrDgaJpZM4MuvS6>
> .
>
--
Ross Scroggs
***@***.******@***.***>
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<https://github.com/
GAM-team/GAM#461#issuecomment-347709640>, or mute the thread<
https://github.com/notifications/unsubscribe-auth/AgfqfKjpdXx95DYyICutG_
rTqb-S0cBqks5s7KMwgaJpZM4MuvS6>.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8LzeUbrHuOp0RmrQToW9oHBC7MkSSks5s7KQ1gaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
|
I only have one Google domain @beldingschools.org
On Nov 28, 2017, at 7:28 PM, Ross Scroggs <notifications@github.com<mailto:notifications@github.com>> wrote:
If the two domains are different, how are they related?
A Google admin can only administer the primary domain and subdomains.
What does gam print domains show?
Ross
…On Tue, Nov 28, 2017 at 4:24 PM, kc8zpi ***@***.******@***.***>> wrote:
No. The G suite admin is my ***@***.*** account and my test user is a
new student account. Sorry for the confusion .
Sent from my iPad
On Nov 28, 2017, at 7:20 PM, Ross Scroggs ***@***.******@***.***><
***@***.***>> wrote:
From your gam oauth info, does the domain from: G Suite Admin:
***@***.******@***.******@***.***>
Match the domain of the test user?
Ross
On Tue, Nov 28, 2017 at 3:44 PM, kc8zpi ***@***.******@***.***><mailto:
***@***.******@***.***>>> wrote:
> My admin account just had the _SEED_ADMIN_ROLE?. I added Services Admin,
> User Management, Group Admin. I am still getting the ERROR: 403: Not
> Authorized to access this resource/api - forbidden?
>
>
>
> ________________________________
> From: Ross Scroggs ***@***.******@***.***><mailto:
***@***.******@***.***>>>
> Sent: Tuesday, November 28, 2017 5:35 PM
> To: jay0lee/GAM
> Cc: Ryan Kelley; Comment
>
> Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
> resource/api - forbidden (#461)
>
> Do the following: gam oauth info
> The last line of the output is: G Suite Admin: ***@***.******@***.***><mailto:
***@***.******@***.***>>
> Fill in that user name in this command: gam print admins user
> ***@***.******@***.******@***.***>
> What roles does ***@***.******@***.******@***.***> have? My super
user has: _SEED_ADMIN_ROLE,
> _GROUPS_ADMIN_ROLE, _SERVICE_ADMIN_ROLE
> What is the scopeType for each role?
>
> Ross
>
>
> On Tue, Nov 28, 2017 at 2:21 PM, kc8zpi ***@***.******@***.***><
***@***.***>> wrote:
>
> > The command is at the bottom of my message. It's this one.
> >
> > gam csv e:/export/google brown-pass.csv gam update user ~Email password
> > ~Password changepassword off >> RESULT-SetPasswords.txt
> >
> >
> >
> > Sent from my Verizon, Samsung Galaxy smartphone
> >
> >
> > -------- Original message --------
> > From: Ross Scroggs ***@***.******@***.***><mailto:
***@***.******@***.***>>>
> > Date: 11/28/17 4:55 PM (GMT-05:00)
> > To: jay0lee/GAM ***@***.******@***.******@***.***>
>
> > Cc: Ryan Kelley ***@***.******@***.******@***.***>>,
Comment <
> ***@***.******@***.******@***.***>
> > >
> > Subject: Re: [jay0lee/GAM] ERROR: 403: Not Authorized to access this
> > resource/api - forbidden (#461)
> >
> > What command are you trying to execute?
> >
> > Ross
> >
> > On Tue, Nov 28, 2017 at 11:06 AM, kc8zpi ***@***.******@***.***><
***@***.***>>
> wrote:
> >
> > > Jay, I'm having the same 403 issue with 4.32. I have run the oauth
> revoke
> > > and info domain a couple of times. I'm showing 30 scopes in my oauth
> info
> > > and the user I'm having issues with is showing PASS in all areas of
> check
> > > service account.
> > >
> > > -
> > > You are receiving this because you commented.
> > > Reply to this email directly, view it on GitHub
> > > <#461 (comment)>,
or
> > mute
> > > the thread
> > > <https://github.com/notifications/unsubscribe-
auth/AIU8LyoTfLp048kuC-
> > YOlfGTf2KCGLjdks5s7FmfgaJpZM4MuvS6>
> > > .
> > >
> >
> >
> >
> > --
> > Ross Scroggs
> > ***@***.******@***.******@***.***>
> >
> > -
> > You are receiving this because you commented.
> > Reply to this email directly, view it on GitHub<https://github.com/
> > GAM-team/GAM#461#issuecomment-347676585>, or mute the thread<
> > https://github.com/notifications/unsubscribe-
> auth/AgfqfFJFAWR1_Nsz1g5VwrM-
> > xn4UxPX3ks5s7IFlgaJpZM4MuvS6>.
> >
> > -
> > You are receiving this because you commented.
> > Reply to this email directly, view it on GitHub
> > <#461 (comment)>, or
> mute
> > the thread
> > <https://github.com/notifications/unsubscribe-auth/
> AIU8L1Nm6h7zPTEouED76LTvX8NA0rXoks5s7IdlgaJpZM4MuvS6>
> > .
> >
>
>
>
> --
> Ross Scroggs
> ***@***.******@***.******@***.***>
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub<https://github.com/
> GAM-team/GAM#461#issuecomment-347687046>, or mute the thread<
> https://github.com/notifications/unsubscribe-auth/AgfqfMppJ_
> hTDvqQ5niGW4Yo05ie4z8qks5s7IqYgaJpZM4MuvS6>.
>
> -
> You are receiving this because you commented.
> Reply to this email directly, view it on GitHub
> <#461 (comment)>, or
mute
> the thread
> <https://github.com/notifications/unsubscribe-auth/AIU8L3abHM1_uQAQR-
8wOf3ugS2NqVHsks5s7JrDgaJpZM4MuvS6>
> .
>
--
Ross Scroggs
***@***.******@***.******@***.***>
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<https://github.com/
GAM-team/GAM#461#issuecomment-347709640>, or mute the thread<
https://github.com/notifications/unsubscribe-auth/AgfqfKjpdXx95DYyICutG_
rTqb-S0cBqks5s7KMwgaJpZM4MuvS6>.
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8LzeUbrHuOp0RmrQToW9oHBC7MkSSks5s7KQ1gaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com<mailto:ross.scroggs@gmail.com>
-
You are receiving this because you commented.
Reply to this email directly, view it on GitHub<#461 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/AgfqfGwNk9VEhCBteDpk1ivJDYKCWeBVks5s7KUVgaJpZM4MuvS6>.
|
Thanks for the help Ross. |
So I am getting the same error message when trying to run the "gam print guardians group" command. I reauthed, a couple times now, and no dice. |
Contact me privately.
Ross
…On Fri, Oct 12, 2018 at 4:34 PM bffive ***@***.***> wrote:
So I am getting the same error message when trying to run the "gam print
guardians group" command. I reauthed, a couple times now, and no dice.
gam print admins user yields:
roleAssignmentId,roleId,role,assignedTo,assignedToUser,scopeType,orgUnitId,orgUnit
7575636725989494,7575636725989377,_SEED_ADMIN_ROLE,117726589875268706402,
***@***.***,CUSTOMER,,
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#461 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AIU8L-B2TDwH6sbi_OwiKpi6hhv2u6K8ks5ukScDgaJpZM4MuvS6>
.
--
Ross Scroggs
ross.scroggs@gmail.com
|
The issue tracker is for reporting product deficiencies. "How do I?" questions should be posted to the discussion forum at https://groups.google.com/group/google-apps-manager. When in doubt, start at the discussion forum and return here only when instructed to do so.
Please confirm the following:
Full steps to reproduce the issue:
Expected outcome (what are you trying to do?):
I am trying to run any command with GAM
Actual outcome (what errors or bad behavior do you see instead?):
ERROR: 403: Not Authorized to access this resource/api - forbidden
I have uninstalled and reinstalled, created a new project and run through all of the install steps. My credentials pass when tested and this was working properly until it updated to 4.1 (Am on current 4.2 as of writing this and issue persists.)
The text was updated successfully, but these errors were encountered: