Session Recording Error on View Attempt

Document ID : KB000006396
Last Modified Date : 25/05/2018
Show Technical Document Details
Issue:

We configured session recording to an NFS share. The share can be mounted successfully and the recording files are written to the share without problem. But when we try to view any recording from the Sessions > Recording page we get error "Message 16018: Unable to locate recording data. The file may have been removed, or the mount may be down.".

Cause:

The session recording files are written by a process running as the root user on the appliance. But the web service that gets the recording files for viewing from the UI runs as a non-root user. The NFS server did not allow that user to read the files. Root on the appliance has a umask of 0022 and new files should be created with 0644 permissions so that any user can read the files. PAM relies on this and does not explicitly set permissions after file creation. If the NFS server imposes other default permissions, e.g. by having files inherit the permissions of the parent directory, that do not include read access for all, this problem will be observed.

Resolution:

Make sure NFS share permissions allow the root user on the appliance to read and write files, and non-root users are allowed to read files.