IBM Support

ATAP guardctl activate command returns "permission denied" error

Troubleshooting


Problem

When you run the ATAP activate guardctl command, you may get the following error or similar returned: 
  
Creating permissions

/app/gim/modules/ATAP/current/files/bin/guardctl: Permission denied

Instance root/XXXXXXX is not instrumented

ERROR: Database has not been instrumented yet - please run 'instrument'

Symptom

Running the activate command will return a permission denied message like this: 
 

Creating permissions

/app/gim/modules/ATAP/current/files/bin/guardctl: Permission denied

Cause

The incorrent permissions have been set somewhere in the given path to guardctl:  
/app/gim/modules/ATAP/current/files/bin/guardctl

Environment

Linux

Diagnosing The Problem

If the path to guardctl is the same as below on the affected DB server, then the following steps can be used to check the permissions for each step in the directory path:
Sample path to guardctl: /app/gim/modules/ATAP/current/files/bin/guardctl
Commands to run from root on the DB server: 
ll / | grep app
ll /app/ | grep gim
ll /app/gim/ | grep modules
ll /app/gim/modules/ | grep ATAP
ll /app/gim/modules/ATAP/
ll /app/gim/modules/ATAP/current/ | grep files
ll /app/gim/modules/ATAP/current/files/ | grep bin
ll /app/gim/modules/ATAP/current/files/bin/

Resolving The Problem

If any of the above commands shows that the permissions are anything LESS THAN 755, you can chmod +x <the directory>
Eg: If you get the following output for 
 ll / | grep app

drwxr-x--- 3 root root 17 Jul 19 22:17 app

drwxr-x--- 6 root root 63 May 23 14:55 apps

The solution for this path is: 

chmod 755 /app

This will apply execute rights where needed. 

You can refer to any third party online linux permissions checking page on the internet to verify if the output each ll <xyz> | grep command is correct or not. Eg: https://chmod-calculator.com/

Document Location

Worldwide

[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"ARM Category":[{"code":"a8m0z0000001gcKAAQ","label":"A-TAP"}],"ARM Case Number":"TS014172579","Platform":[{"code":"PF016","label":"Linux"}],"Version":"All Versions"}]

Document Information

Modified date:
17 October 2023

UID

ibm17053660

Page Feedback