ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Access denied writing pid files in RHEL 7.x

book

Article ID: 225970

calendar_today

Updated On:

Products

Data Loss Prevention Enterprise Suite

Issue/Introduction

Access denied writing to /var/run/Symantec/DataLossPrevention/EnforceServer/15.7/*.pid after upgrading to 15.7 

in the SymantecDLPManager.logs:

FATAL  | wrapper  | 2021/10/11 22:05:08 | ERROR: Could not write pid file /var/run/Symantec/DataLossPrevention/EnforceServer/15.7/SymantecDLPIncidentPersisterService.pid: Permission denied

FATAL  | wrapper  | 2021/10/11 22:24:11 | ERROR: Could not write pid file /var/run/Symantec/DataLossPrevention/EnforceServer/15.7/SymantecDLPIncidentPersisterService.pid: Permission denied

Cause

The service account for DLP (protect or SymantecDLP) cannot write to /var/run

Environment

Release : 15.7

Component : Default-Sym

Resolution

Changed the DLP services PIDDIR= to write to /var/log since in 15.8 DLP writes the PID to those directories. Follow the below steps:

cd /etc/init.d

Edit each service file:

Edit the PIDDIR= line

Change the directory from "/var/run/Symantec/..." to "/var/log/Symantec/..."

Save and exit the file. 

Restart the DLP services. 

Attachments