When a user is logged in to a 64-bit Linux computer using an Active Directory (AD) or Lightweight Directory Access Protocol (LDAP) user account, the Symantec Endpoint Protection (SEP) for Linux client does not work correctly.

When logged in under an AD/LDAP user account, the SEP GUI or "sav" command lines will report "Malfunctioning". SEP will appear to be functioning normally under local accounts, though.

The User Interface (UI) of the SEP for Linux client uses several 32-bit processes. When the UI is run, certain system calls are made that require 32-bit libraries in order to perform user authentication with the AD/LDAP server. If the 32-bit libraries are not installed, the UI will not function correctly, and may not run at all.

Install the 32-bit version of the required AD/LDAP authentication libraries for Network Security and System Security Services (NSS and SSSD).

For example: libnss and sssd-client.

Then restart rtvscand and retry SAV GUI and commands.

References:
Red Hat Documentation - Configuring an AD provider for SSSD