Anyone know why the /api/v2/analytics/report/execution endpoint returns a 403 Forbidden error when executed by the CLI service account? The account has the Admin role and the report exists in the staging environment. Terraform provider version is 2.25.0 and the error persists across multiple report IDs.
It depends, but generally… the 403 stems from missing specific analytics permissions rather than broad Admin rights. In Genesys Cloud, the Admin role does not implicitly grant access to report execution endpoints. The service account needs the analytics:report:execute permission explicitly added via the Permissions API or the Admin UI under the specific role assigned to that user. Even with Terraform managing infrastructure, permissions are often handled separately in the identity layer. Check the permissions object in the role definition for the CLI user. If using OAuth2, ensure the client credentials grant the analytics:reports scope. A common oversight is assuming the default Admin role covers all analytics actions, but the documentation clarifies that report execution requires explicit consent. Try adding the permission and re-authenticating the CLI session to see if the 200 OK response returns.