User profiles that were created or updated incorrectly might experience duplicate or missing user metadata. As a result, the user might get an "Access Denied" error when attempting to access KMS/KAF applications. In this case, the following troubleshooting steps can be taken.
A. To view the missing user's role via the Management Console.
- Go to the KMS/KAF Management Console > Manage Users tab.
- Search for the affected user. You might notice that the user does not have a proper role configured.
- Copy the affected user ID.
B. To view the missing user's role via the API.
- Go to the API console at https://developer.kaltura.com/console/ (Sign In) or http://www.kaltura.com/api_v3/testme.
- Generate a KS (relevant when Testme Console is used)
See How to Start a Kaltura Session using the TestMe Console. - Session Service: metadata
- action: list
- Click Edit next to filter (KalturaMetadataFilter)
- Go to metadataObjectTypeEqual and change to USER
- On the ObjectIDEqual enter the affected User ID
- Review the results on which metadata might be = 0
C. To update the user's role.
- Session Service: metadata
- Select Action: Add
- metadataProfileId: You can search it from userRoleProfile or copy it from a working user details.
- ObjectType: USER
- ObjectID: User ID
- XMLData: <metadata><role>privateOnlyRole</role></metadata>
(the role added in this example is privateOnlyRole, other roles can be viewerRole, adminRole, unmoderatedAdminRole)
If the issue isn't resolved, try to delete the metadata and add it again. To delete metadata:
Select service: metadata
Select action: Delete
id: [Enter the <id> as found in the XML output]
