Unable to start Router DSA
search cancel

Unable to start Router DSA

book

Article ID: 135133

calendar_today

Updated On:

Products

CA Directory

Issue/Introduction

Getting below error while starting a (router) DSA on fresh installation of R14.1 - it is configured to listen to port 636


* [64] 20190722.044515.215 DSA_E2220 Cannot register address

* [64] 20190722.044515.215 DSA_I1240 DSA shutting down

* [64] 20190722.055249.460 DSA_E2220 Cannot register address

* [64] 20190722.055249.460 DSA_I1240 DSA shutting down

* [64] 20190722.060346.720 DSA_E2220 Cannot register address

* [64] 20190722.060346.720 DSA_I1240 DSA shutting down


Environment

Release : 14.1

Component : CA Directory

Cause

Linux, by default, has a security mechanism in place which prevents non root users to bind to privileged ports.

Resolution

As per the official documentation https://docops.ca.com/ca-directory/14-1/en/installing/installing-ca-directory/linux/use-ports-1-1024 we need to add the capability for the dxserver executable

setcap cap_net_bind_service=+ep $DXHOME/bin/binary

 ie


setcap cap_net_bind_service=+ep /opt/CA/Directory/dxserver/bin/dxserver


If the above is in place, and errors related to permissions are still observed in the DSA trace log and /var/log/messages, please check whether the filesystem is mounted with nosuid, as one example.

Powered by Wolken Software