ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

The CSP client installs fine on RHEL6 and CentOS6, but SCSP IPS Agent wouldn't start and generates this error: /usr/lib64/ doesn't exist.


Article ID: 158879


Updated On:


Critical System Protection Critical System Protection Client Edition Data Center Security Server Advanced


This is a SCSP IPS Agent symlink issue with newly released versions of openssl on RHEL6 & CentOS6, creating SSL library errors. The IPS daemon is looking for ( based on this symlink in IPS/binhome dir (/usr/products/Symantec/scspagent/IPS/bin/ -> /usr/lib64/ creating error: /usr/lib64/ doesn't exist.

The error is caused by the fact that the CSP symlink is linking to openssl library and  the Openssl library, that is installed on RHEL6 & CentOS6, is a newer version of Openssl library.

 In the illustration of issue below, the new Openssl library is

[[email protected]]# /etc/init.d/sisipsagent restart
SCSP IPS Agent is not running
Error starting SCSP IPS Agent
[[email protected]]# /etc/init.d/sisidsagent restart
Stopping SCSP IDS Agent (PID 857)..
SCSP IDS Agent stopped successfully after 5 seconds
SCSP IDS Agent started successfully (PID 15460)
[[email protected]]# /etc/init.d/sisipsutil restart
Stopping SCSP Util Service (PID 951).
SCSP Util Service stopped successfully after 1 seconds
SCSP Util Service started successfully (PID 15535)
[[email protected]]#

[[email protected]]# tail /var/log/scsplog/sisips.err
/usr/products/Symantec/scspagent/IPS/bin/sisipsdaemon: error while loading shared libraries: cannot open shared object file: No such file or directory

ls -l /usr/products/Symantec/scspagent/IPS/bin/
lrwxrwxrwx 1 sisips sisips 26 Dec 30 14:23 /usr/products/Symantec/scspagent/IPS/bin/ -> /usr/lib64/
ls -l /usr/lib64/
ls: cannot access /usr/lib64/ No such file or directory

[[email protected]]# find / -name "libssl*"
[[email protected] v530315]#


The workaround is to create Symbolic links to the and

1. Check the libraries first:

ls -al /usr/lib64/libssl*
-rwxr-xr-x. 1 root root 221600 Aug 7 20:42 /usr/lib64/
lrwxrwxrwx 1 root root 16 Dec 2 04:33 /usr/lib64/ ->
lrwxrwxrwx 1 root root 16 Dec 2 04:33 /usr/lib64/ ->
-rwxr-xr-x 1 root root 436984 Nov 22 12:20 /usr/lib64/

ls -al /usr/lib64/libcrypto*
lrwxrwxrwx 1 root root 19 Dec 2 04:33 /usr/lib64/ ->
lrwxrwxrwx 1 root root 19 Dec 2 04:33 /usr/lib64/ ->
-rwxr-xr-x 1 root root 1946880 Nov 22 12:20 /usr/lib64/

2. Create Sym links

cd /usr/lib64

ln -s
ln -s

3. Verify sym links are created:

lrwxrwxrwx 1 root root 16 Jan 13 16:04 /usr/lib64/ ->
lrwxrwxrwx 1 root root 19 Jan 13 16:05 /usr/lib64/ ->

4. Restart IPS Daemon:
/etc/init.d/sisipsagent restart

5. Verify IPS daemon started

/etc/init.d/sisipsagent restart
SCSP IPS Agent is not running
SCSP IPS Agent started successfully (PID 15635)

ps -ef|grep csp
root 15460 1 0 2013 ? 00:04:33 /usr/products/Symantec/scspagent/IDS/bin/sisidsdaemon
sisips 15535 1 0 2013 ? 00:00:00 /usr/products/Symantec/scspagent/IPS/bin/sisipsutildaemon
sisips 15635 1 0 16:08 ? 00:00:00 /usr/products/Symantec/scspagent/IPS/bin/sisipsdaemon

IPS Daemon started fine after creating the necessary symlinks.