Hey, We tried to create a Role for Webservice Only; created a new Employee that only has that role; Created Access Token for that user but when we try to use that access token to call a restlet that we have developed we get a 403 Invalid login attempt. Is there any permission missing that we need to assign to the role to make it work?

My understanding, open to correction, is that the Web Services Only check box doesn't work. It actually messes things up. I wish I had docs or source to back this up other than self exp.

but it seems like even if we disable that checkbox we still get that error message? Or do we need to regenerate access tokens AFTER we removed the checkbox on the role?

a restlet is not the suitetalk web service

I know but the description of that checkbox says it is for ANY API access other then UI (therefore restlet should be allowed by it too)

Yeah we tried it with and without that checkbox. I am just wondering that when creating access tokens if it copies that information or not (like do I need to recreate the access token or not)

i don't think that information matters

Yeah because in that case we still get the same error message regardless if webservice only is enabled or not

might want to use a tool like postman to do the request

Postman is great for testing.

well I know that the authentication itself is working

although i dont think it would give a 403 status, you might want to make sure the deployment audience and status are correct

they are 100% correct