3.1.2.1 Server-wide Access Check

The server MUST perform an authorization check<40> at the beginning of each call, before method-specific processing begins. Method-specific processing proceeds if the client is granted STANDARD_RIGHTS_READ via the Server Access Control List (section 3.1.1.11). If the client is not granted this right, the call is rejected with an access denied error.