Access denied writing pid files in RHEL 7.x

search cancel

Access denied writing pid files in RHEL 7.x

book

Article ID: 225970

calendar_today

Updated On:

Products

Data Loss Prevention Enterprise Suite

Issue/Introduction

Access denied writing to /var/run/Symantec/DataLossPrevention/EnforceServer/15.7/*.pid after upgrading to 15.7

in the SymantecDLPManager.logs:

FATAL | wrapper | 2021/10/11 22:05:08 | ERROR: Could not write pid file /var/run/Symantec/DataLossPrevention/EnforceServer/15.7/SymantecDLPIncidentPersisterService.pid: Permission denied

FATAL | wrapper | 2021/10/11 22:24:11 | ERROR: Could not write pid file /var/run/Symantec/DataLossPrevention/EnforceServer/15.7/SymantecDLPIncidentPersisterService.pid: Permission denied

Environment

Release : 15.7, 15.8, 16.x

Component : Default-Sym

Cause

The service account for DLP (protect or SymantecDLP) cannot write to /var/run

Resolution

Changed the DLP services PIDDIR= to write to /var/log since in 15.8 DLP writes the PID to those directories. Follow the below steps:

cd /etc/init.d

Edit each service file:

Edit the PIDDIR= line

Change the directory from "/var/run/Symantec/..." to "/var/log/Symantec/..."

Save and exit the file.

Restart the DLP services.

Feedback

thumb_up Yes

thumb_down No