DISK CRITICAL : sophos file not accessible : permission denied

hello ,

(Complete) Disk access restricted upon installing SPL on the Linux machine
we have a server protected with the sophos protection ( antivirus) , we are noticing That icinga shows an alert telling that sophos file is not accessible and all the informations about the disk are not showing as well .
we try to set an exclusion for this file [ /opt/sophos-spl/var/sophos-spl-comms/ ] / [ /opt/sophos-spl ] but we are still seeing the same error message


image

what can cause this behaviour ?
Has anyone run into this problem before?

Hello dendani,

How exactly do you do that?

Best,
A/K

Hi,

Was there ever a resolution to this?

Just setup a new instance on Ubuntu 22.04 and have the same issue where we also use Sophos Linux protection.

Can’t seem to give the nagios user that was created during installation permission to the file path because Sophos has made it a read only file system.

You could try adding a sudoers config that allows the nagios/icinga user to run the plugin script as root.
After that you need to modify the command in your config and add sudo to the command line

command = [
        "/usr/bin/sudo",
        "/usr/lib64/nagios/plugins/check_disk"
    ]

Hi,

Thanks very much for your response, I followed your advice and it worked great.

Thanks again!