OneFS 8.2: Error 403: Accessing OneFS web administration interface using SmartConnect service

Prior to OneFS 8.2 Clients could access cluster Management using WebUI or SSH using the SmartConnect Service IP (SSIP/VIP/SIP).
However, there were unexpected behavior noticed when using the SSIP. And so, it is not advisable to use the SSIP for Management. 

In OneFS 8.2, the SSIP was moved from a SYSTEM_ZONE to a DISABLED_ZONE. This change no longer allows authentication through the SSIP when in the DISABLED_ZONE. Access to the Cluster Management using WebUI or SSH and the SSIP will not work due to disable authentication.

The 403 Forbidden error is an HTTP status code that means that accessing the page or resource trying to reach is forbidden.

Unable to access Isilon Cluster management using WebUI using the SmartConnect Service IP (SSIP/VIP/SIP)
It fails with the below error:
 

Prior to 8.2 the SSIP belongs to the System access zone, which is Zone 1. However, in 8.2 it is no longer in the System access zone and is part Zone 0. Hence the access to WebUI and SSH has been forbidden. 

The SSIP should only be used for SmartConnect Load balancing. It should not be used to access the Cluster Management using SSH or WebUI. Also, it should not be used by clients to access Data on the Cluster.

Do not use SSIP for Cluster Management using WebUI or SSH or Client Data Access.

Use IPs from a System Access Zone network pool to Access the Cluster Via WebUI or SSH. To monitor and manage your Isilon cluster from the browser-based web administration interface:

1. Open a browser window and type the URL for your cluster in the address field, replacing <YourNodeIPAddress> with the IP address provided when ext-1 was configured in one of the following examples:

2. Log in to OneFS by typing your OneFS credentials in the Username and Password fields.

For additional information, see Isilon OneFS Version 8.2.0 Web Administration Guide. Page 31 has a chapter on "Connecting to the cluster."