search cancel

ICDx returns "403 forbidden nginx" trying to bring up the web interface after installation.

book

Article ID: 173467

calendar_today

Updated On:

Products

Integrated Cyber Defense Exchange

Issue/Introduction

"403 forbidden nginx" appears while trying to access the GUI for Integrated Cyber Defense exchange (ICDx)

Errors in ICDX logs for the connector are similar to the following:

2019/01/22 18:35:28 [error] 17833#17833: *974 open() "/opt/symantec/icdx/portal_dx/favicon.ico" failed (13: Permission denied), client: 10.30.51.112, server: ~., request: "GET /favicon.ico HTTP/1.1", host: "<hostname>", referrer: "<hostname>"

2019/01/22 19:07:06 [error] 17815#17815: *1417 "/opt/symantec/icdx/portal_dx/index.html" is forbidden (13: Permission denied), client: 10.30.51.112, server: ~., request: "GET / HTTP/1.1", host: "<hostname>"

Cause

NGINX permissions after the install are not correct.

Resolution

Set base permissions 

  • umask 0022 

 

Change permissions on ICDX folder to 750 (the current user can read, write, and execute, the group cannot write, and others cannot read, write, or execute.)

  • find /opt/symantec/icdx/ -type d -exec chmod g+rx {} \;
  • find /opt/symantec/icdx/ -type f -exec chmod g+r {} \;

Attachments