Adding trusted realm in RSA Authentication Manager 8.1 SP1 fails with an error: "The trust is not unique. Either the trust package has already been imported under another name, or the name ace0stl0 has already been used."
Originally Published: 2018-06-22
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.1 SP1 and higher
Issue
ERROR [[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)']
GUILog.traceException(587) | exception: com.rsa.command.exception.DuplicateDataException:
ERROR: duplicate key value violates unique constraint "ak_ims_trusts"
Detail: Key (owner_id, deployment_uuid, external_realm_name)=(000000000000000000001000e0011000,
832339bc-df9e-4ff3-b8cd-40f7ef40897f, SystemDomain) already exists.
(000000000000000000001000e0011000, 832339bc-df9e-4ff3-b8cd-40f7ef40897f, SystemDomain)
key is already present in the table ims_trusts.
The trust is not unique. Either the trust package has already been imported under another name, or the name <realm_name> has already been used.
Cause
Resolution
To correct the issue,
- How to connect to SQL in RSA Authentication Manager 8.x
- At step 3 in the instructions, enter the following command on the primary for Realm 1:
db=# SELECT * FROM ims_config_value WHERE name='ims.deployment.uuid';
id | instance_id | name | value
----------------------------------+------------------+---------------------+--------------------------------------
5a5f17b966e69a0a1a917ab6685884a8 | 0000-Global-0000 | ims.deployment.uuid | 90b5dfbc-6622-4398-aa18-e70aa3671151
(1 row)
- On the replica for Realm 2,
db=# SELECT * FROM ims_config_value WHERE name='ims.deployment.uuid';
id | instance_id | name | value
---------------------------------+------------------+---------------------+--------------------------------------
8627add62fe39a0a010f95c16788a864 | 0000-Global-0000 | ims.deployment.uuid | 832339bc-df9e-4ff3-b8cd-40f7ef40897f
(1 row)
-
On the primary for Realm 2,
db=# SELECT * FROM ims_config_value WHERE name='ims.deployment.uuid';
id | instance_id | name | value
---------------------------------+------------------+---------------------+--------------------------------------
8627add62fe39a0a010f95c16788a864 | 0000-Global-0000 | ims.deployment.uuid | 832339bc-df9e-4ff3-b8cd-40f7ef40897f
(1 row)
Notice that the UUID for the replica in Realm 1 and the primary in Realm 2 are the same. This is the reason why the insertion of a trusted realm fails. Make sure that each server has a unique UUID.
Workaround
Related Articles
Redirecting the location of the RSA Identity Governance & Lifecycle aveksaServer.log file from the default location to ano… Number of Views Error while installing Enterprise Manager on RSA Data Loss Prevention version 9.6 Number of Views RSA Via Lifecycle and Governance 7.0 upgrade or reinstall fails with an error that it could not find matching ASM Kernel d… Number of Views Identifying if ports used by Datacenter/Endpoint components are in use on the Windows machine Number of Views Question: Can unmapped (also known as orphan) events be converted to mapped events Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA-2026-07: RSA Authentication Manager Security Update for Third-Party Component Vulnerabilities Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
