Bearer token errors from various endpoints

The following return codes can occur on Venafi REST calls. There are several reasons why the token in your API call may fail.

Response description

HTTP Return Code

Possible reason

HTTP 400 Bad Request

One or more of the following:

  • If you are calling an endpoint from a resource server, such as VEDSDK or VEDHSM, the request is missing required parameters.
  • If you are calling an endpoint from the VEDAuth server, the grant is most likely expired.

HTTP 401 Unauthorized

  • Your token is expired or revoked. If you have a refresh token, use it to get a new access token and try again. For more information, see POST Authorize/Token refresh.
  • The Authorization parameter in the header did not include the expected token. Make sure you are using the correct token for this instance of Trust Protection Platform.

HTTP 403 Forbidden

Your grant doesn't have the scope required for this call. Prior to 20.4, this error was a HTTP 401 error. Find the scope in the Scope map for tokens and then get a new token. For more information, see Getting a token.