Troubleshooting: enabled PSTK debugging
- ERROR DataONTAP.C.PowerShell.SDK.NcRestInterface - The remote server returned an error: (403) Forbidden.
- ONTAP does not allow the QoS commands to be assigned to any role at the SVM level – so can’t fix this by adding a permission
- Although ZAPI works, dropping back to using ZAPI is not a viable solution, as it’s only maintained for “legacy” and on a sunset path
To reproduce
a. Install PowerShell toolkit
b. Setup vsadmin user on an SVM
c. Setup management lif on the SVM
d. Connect to the SVM management lif with the vsadmin account (or account with vsadmin assigned)
e. Execute Get-NcVol, with no QoS policies applied – success, no errors
f. Apply QoS policy or Adaptive QoS policy to a volume
g. Execute Get-NcVol again, 403 error occurs
h. Enable debug level logging, Set-NaToolKitConfiguration -LogLevel DEBUG
i. Note the qos/policies endpoint being attempted
Reproduced using PowerShell Toolkit 9.15.1, 9.16.1, and 9.17.1 – connecting to ONTAP 9.16.1P8 and ONTAP 9.17.1P7
Idea/suggestions on long term fix?
