Views:

On RedHat, CentOS, and Oracle Linux systems, SELinux is enabled by default. This prevents the Anti-Malware engine from loading, causing the offline status on the DSM console.

Execute the "[root@localhost]$ sestatus" command to check the SELinux status:

SELinux status: enabled
SELinuxs mount: /selinux
Current mode: enforcing
Mode from config file: enforcing
Policy version: 21
Policy from config file: targeted

To resolve the issue, do any of the following:

 
For Deep Security 9.6 Linux versions, ensure that the related KSP is imported into DSM.
  • Do not enable the SELinux option during the initial installation of the OS.
  • If it has already been enabled, disable it by following the steps in this article: Enable or Disable SELinux.
  • Allow the User (administrator/root) to get access to the program under SELinux enable mode.

    1. Change libvsapi.so file context type to “textrel_shlib_t” using the following command:

      #chcon –t textrel_shlib_t /opt/ds_agent/lib/libvisapi.so

    2. Reload the ds_am engine by executing this command:

      #service ds_agent restart

Keywords: offline,am offline,SELinux,Engine offline,Anti-malware engine offline,AM engine offline error,anti malware engine cannot start,disable selinux,antimalware offline