000011544 - When generating a Replica Package  error: Unable to resolve replica fully-qualified domain name

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000011544
Applies ToAuthentication Manager 7.1 SP2
Solaris Linux UNIX
IssueUnable to resolve replica fully-qualified domain name

There was a Problem processing your request.


Unable to resolve replica fully-qualified domain name Domain.com to IP x.x.x.x

CauseThis error occurs when either incorrect or inconsistent information is naming services, or an incorrect ip/fqdn has been cached by AM 7.1.  The ip/fqdn can come from either the local hosts files, dns, or other naming service.

Fix Part 1: Verifying name resolution is correct.

Make sure /etc/hosts on all RSA Servers has the proper information for all RSA Servers. This needs to be in the format:


IP Address      Fully-Qualified-Host-Name      shortname

Example:     primary.company.com     primary     replica1.company.com    replica1     replica2.company.com    replica2


Next, ping the replica by both FQHN and shortname, both must resolve to the IP address.

Next, verify that your naming service returns the fully-qualified hostname for all RSA Servers. Here is an example of a DNS nslookup to the IP address (NOT the name):


nslookup     name = replica1.company.com  


If you use other naming services, verify they are correctly configured.


Shut down all RSA Services on the Primary.  From the (RSAHome)/server directory:

./rsaam stop all 

REBOOT the server. Since information is sometimes in a persistent cache, this reboot is required.



Fix Part 2: creating the package

Login and switch to the RSA fileowner. Change directory to : (RSAHome)/utils

Delete any existing Replica package files and primary data files from this directory.



. ./rsaenv  

to set environment variables (please notice this starts with dot-space-dot-slash)  


Create the replica package from the command line, by running the following command:   

./rsautil gen-replica-pkg  


Enter the replica fully-qualified hostname: replica1.company.com  

Enter the replica IP:  

Generate primary data file offline? (y | N): n

Enter administrator user ID: : superadmin  

Enter Admin Password: ***********  

Enter Master Password: ***********  

Generating the replica package...



Successfully generated replica package file replica1-replica.pkg



 (note: if you selected Y for making the Primary data file offline, you will also see:

Successfully generated primary data file /usr/local/RSASecurity/RSAAuthenticationManager/db/oradata/xsvbid8i/primary.company.com-xsvbid8i-2134415.dmp






In this example you are prompted for the ?administrator userID?; this is a user of the Security Console with the superadmin role


Enter the information as prompted, this will generate your replica package.

Use the generated replica package for installing or reattaching the Replica

NotesSee A43345 for a similar solution on Windows, or A44221 for a similar solution on the RSA Appliance
Legacy Article IDa54180