Unable to start SDMConnector when running Spectrum and SDC/TrapX on the same system
search cancel

Unable to start SDMConnector when running Spectrum and SDC/TrapX on the same system

book

Article ID: 378915

calendar_today

Updated On:

Products

Network Observability Spectrum

Issue/Introduction

We are running Spectrum 23.3.5 in our production and test environments.

Spectrum was installed on Linux as the root user.

We also have SDC/TrapX installed on the SpectroSERVER MLS system. SDC/TrapX was installed using the non-root method.

In the test environment, we are testing the upgrade to 23.3.13 prior to upgrading in production.

Spectrum was upgraded as the root user.

To upgrade SDC/TrapX, we did the following:

  • Copy the sdc.config and trapX.config file to a safe place
  • Uninstalled SDC/TrapX
  • Installed SDC/TapX using the non-root method

The installation of SDC/TrapX was successful without any errors.

However, when we start SDC using "systemctl --user start sdmconnector" command, it fails to start and we see the following in the sdm.log file:

Fri Sep 27 08:28:04 2024: INFO: SDM LOGGING STARTED
Fri Sep 27 08:28:04 2024: INFO: SDM LOGGING STARTED
Fri Sep 27 08:28:04 2024: ERROR: Failed to initialize CAPKI library
Fri Sep 27 08:28:04 2024: WARNING: Messaging manager is not initialized because ETPKI is not initialized.

When we run " ./SdmConnectorService.exe --start" to start SDC, we see the following error:

starting "Secure Domain Connector" daemon: pid 1545722
[user@spectrum bin]$ Could not open CAPKI shared library, errno is 107, errmsg is /opt/CA/SharedComponents/CAPKI/CAPKI5/Linux/amd64/64/lib/libcapki.so: cannot open shared object file: Permission denied

We verified the permissions on the /opt/CA/SharedComponents/CAPKI/CAPKI5/Linux/amd64/64/lib/libcapki.so file was good.

SDC does start successfully as the root user.

Environment

Version: Any
Component: Secure Domain Connector(SDC)/TrapX

Cause

Spectrum installed and running as the root user and SDC/TrapX installed and running as a non-root user on the same system.

Running in this environment has not been testing and verified.

Resolution

It is recommended to do either of the following:

  • If running Spectrum and SDC/TapX on the same system, both should be installed and running as either the root user or the non-root user.
  • Install and run SDC/TrapX as the root user or non-root user on it's own separate dedicated system.
Powered by Wolken Software