# 54007: Access forbidden for identity

Log Level: ERROR

## Description

The identity specified in the Access Token does not have permissions to perform this operation.

### Possible causes

* Sync's ACL control has been unintentionally enabled on your Sync service instance.
* An SDK endpoint trying to read or write a Sync object does not have the correct permission configured.
* The identity you specified in your SDK's token does not match the permissions that you intended for them.

### Possible solutions

* Disable the ACL feature on this Sync service. This will allow access from any SDK with a valid token. Do this by either unchecking the AclEnabled feature in the [Twilio Console](https://www.twilio.com/console/sync/services), or setting the `acl_enabled` flag to `false` via the [Sync REST API](/docs/sync/api/service).
* Confirm a valid permission is configured via the [Sync Permissions REST API](/docs/sync/api/sync-permissions), and that the configured identity matches the identity you provide in your FPA Access Tokens.