The Symantec Enterprise Gateway LDAP Directory Synchronization Service will not start on Linux
search cancel

The Symantec Enterprise Gateway LDAP Directory Synchronization Service will not start on Linux

book

Article ID: 281449

calendar_today

Updated On:

Products

VIP Service

Issue/Introduction

Starting the LDAP sync service on Linux fails with the error in the LDAP sync log: 

ERROR "2023-03-11 10:71:04.635 GMT-0400" 10.10.10.9 LDAPSync 0 0 0  "actor=LDAPSyncService,text=Job (Ldap_Sync_Group.ServiceDelayed_Job threw an exception.,op=Synchronization
org.quartz.SchedulerException: Job threw an unhandled exception. [See nested exception: java.lang.NoClassDefFoundError: javax/mail/MessagingException]
 at org.quartz.core.JobRunShell.run(JobRunShell.java:213)
 at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:573)
Caused by: java.lang.NoClassDefFoundError: javax/mail/MessagingException
 at com.verisign.ldapSync.client.LDAPSyncMgr.startLDAPSync(LDAPSyncMgr.java:422)
 at com.verisign.ldapSync.client.LDAPSyncMgr.run(LDAPSyncMgr.java:164)
 at com.verisign.ldapSync.scheduler.LDAPSyncJob.execute(LDAPSyncJob.java:151)
 at org.quartz.core.JobRunShell.run(JobRunShell.java:202)
 ... 1 more
Caused by: java.lang.ClassNotFoundException: javax.mail.MessagingException
 at java.net.URLClassLoader.findClass(URLClassLoader.java:382)
 at java.lang.ClassLoader.loadClass(ClassLoader.java:424)
 at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:349)
 at java.lang.ClassLoader.loadClass(ClassLoader.java:357)
 ... 5 more

Cause

Insufficient permissions on the VIP EG Linux files to start the service. 

 

Resolution

Adjust the user permissions so that the user account that installed the VIP Enterprise Gateway on the Linux-based operating system is part of the sudoers list.

 

Additional Information

The sudoers file is located at /etc on all Linux-based operating systems. This file contains a list of users and their permission levels. Additionally, a user with administrator privileges who installs the VIP Enterprise Gateway must have access to the locations
mentioned in the sudoers list. 

The sudoers file contains two types of entries; aliases, variables that identify the user, and user specifications that identify the user's permissions.

The following snippet is an example of a sudoers file:

user1 ALL=(ALL)
user2 ALL=(ALL) NOPASSWD: ALL

In this example, user1 has full permissions but needs a password. The operating system prompts for a password whenever user1 tries to perform a task. By contrast, user2 can perform all tasks without a password. The operating system does not prompt user2 for a password.

For VIP Enterprise Gateway, note the following considerations:

  • To install VIP Enterprise Gateway, the user must have permission levels equivalent to user2 in this example.
  • To install VIP Enterprise Gateway as a normal user, a superuser must add the following information to the /etc/sudoers file. Example:

Cmnd_Alias EG_FOLDERS = <VRSN_MAUTH_HOME >/server/bin/ ,
/root/LiveUpdate, /bin/rm, /usr/bin/vim, /bin/bash,
<VRSN_MAUTH_HOME>/server/work/, <VRSN_MAUTH_HOME >/_uninst/,
<Extracted PATH of installer>/linux/setup.bin

<VIPUser> ALL= NOPASSWD:EG_FOLDERS

Powered by Wolken Software