I’m facing a problem with a node which is not allowed to access its cookbook. The message I see in the log is:
Error Resolving Cookbooks for Run List:
This client is not authorized to read some of the information required to
access its cookbooks (HTTP 403).
To access its cookbooks, a client needs to be able to read its environment and
all of the cookbooks in its expanded run list.
Expanded Run List:
missing read permission
[2017-02-17T11:29:02+01:00] ERROR: Running exception handlers
Running handlers complete
[2017-02-17T11:29:02+01:00] ERROR: Exception handlers complete
Chef Client failed. 0 resources updated in 02 seconds
[2017-02-17T11:29:02+01:00] FATAL: Stacktrace dumped to /home/security/.chef/cache/chef-stacktrace.out
[2017-02-17T11:29:02+01:00] FATAL: Please provide the contents of the stacktrace.out file if you file a bug report
[2017-02-17T11:29:02+01:00] ERROR: 403 “Forbidden”
[2017-02-17T11:29:02+01:00] FATAL: Chef::Exceptions::ChildConvergeError: Chef run process exited unsuccessfully (exit code 1)
Open the Chef management console.
Select a cookbook.
Click the Permissions tab.
For each group listed under Name, select or de-select the Read, Update, Delete, and Grant permissions.
Thank you for your responses but I've already checked the permissions and it looks like all is good, because read permission is checked on Read action. Here below a screenshot of the chef-client cookbook. Am I wrong? Any other suggestions?
It's quite the same: the permissions here are the same as all the other clients registered on the server. See screenshot below. I've also tried to bootstrap again the node but the message is exactly the same. How can I proceed?