000011544 - When generating a Replica Package  error: Unable to resolve replica fully-qualified domain name

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000011544
Applies ToAuthentication Manager 7.1 SP2
Solaris Linux UNIX
IssueUnable to resolve replica fully-qualified domain name

There was a Problem processing your request.


 


Unable to resolve replica fully-qualified domain name Domain.com to IP x.x.x.x

CauseThis error occurs when either incorrect or inconsistent information is naming services, or an incorrect ip/fqdn has been cached by AM 7.1.  The ip/fqdn can come from either the local hosts files, dns, or other naming service.
Resolution

Fix Part 1: Verifying name resolution is correct.


Make sure /etc/hosts on all RSA Servers has the proper information for all RSA Servers. This needs to be in the format:


 


IP Address      Fully-Qualified-Host-Name      shortname


Example:


10.1.2.3     primary.company.com     primary 


10.1.2.4     replica1.company.com    replica1


10.1.2.5     replica2.company.com    replica2


 


Next, ping the replica by both FQHN and shortname, both must resolve to the IP address.


Next, verify that your naming service returns the fully-qualified hostname for all RSA Servers. Here is an example of a DNS nslookup to the IP address (NOT the name):


 


nslookup  10.1.2.4  


4.2.1.10.in-addr.arpa     name = replica1.company.com  


 


If you use other naming services, verify they are correctly configured.


 


Shut down all RSA Services on the Primary.  From the (RSAHome)/server directory:


./rsaam stop all 


REBOOT the server. Since information is sometimes in a persistent cache, this reboot is required.


 


 

Fix Part 2: creating the package


Login and switch to the RSA fileowner. Change directory to : (RSAHome)/utils


Delete any existing Replica package files and primary data files from this directory.


 


Run:   


. ./rsaenv  


to set environment variables (please notice this starts with dot-space-dot-slash)  


 


Create the replica package from the command line, by running the following command:   


./rsautil gen-replica-pkg  


 


Enter the replica fully-qualified hostname: replica1.company.com  


Enter the replica IP: 10.1.2.4  


Generate primary data file offline? (y | N): n


Enter administrator user ID: : superadmin  


Enter Admin Password: ***********  


Enter Master Password: ***********  


Generating the replica package...


 


 


Successfully generated replica package file replica1-replica.pkg


 


 


 (note: if you selected Y for making the Primary data file offline, you will also see:


Successfully generated primary data file /usr/local/RSASecurity/RSAAuthenticationManager/db/oradata/xsvbid8i/primary.company.com-xsvbid8i-2134415.dmp


 


-bash-3.00$


 


 


 


In this example you are prompted for the ?administrator userID?; this is a user of the Security Console with the superadmin role


 


Enter the information as prompted, this will generate your replica package.


Use the generated replica package for installing or reattaching the Replica

NotesSee A43345 for a similar solution on Windows, or A44221 for a similar solution on the RSA Appliance
Legacy Article IDa54180

Attachments

    Outcomes