Result

When a message that is sent by a machine arrives in LN, the authorizations of the API role that is linked to the API identity of the machine (API_MACH_ROLE) user are applied:

• If a request invokes a method that is granted in the API role, the request is processed.
• If a request invokes a method that is not granted in the API role, the request is rejected. A “403” error is returned.

The requests sent by a machine contain the LN identity of that machine. This LN identity is used to determine the associated LN user. Therefore, in LN and in the log data, you can distinguish which request was sent by which machine. All requests sent by a particular machine are logged as being sent by the corresponding LN user of that machine. Therefore, traceability and accountability can be performed for the different machines.