Permissions on a DLP Detection servers change after reboots
Article ID: 187959
Data Loss Prevention Network Protect
Symantec Data Loss Prevention (DLP)
After a reboot, the user on var/run/symantec change from symantecdlp/symantecdlp 770 to root/root 770.
This causes the services on the Detection Server to not start.
The Detection Server is installed on a Logical Volume (LV) using the Logical Volume Manager (LVM).
The services are attempting to start before the LV is mounted.
Create either an OVO or a cron job to delay the start of the services until after the LV is mounted.