Error: "Presented Replica Package is not destined for the current system. Select another location." when applying replica package to RSA SecurID Appliance
Unable to apply replica package to RSA SecurID Appliance
Changed name and IP address of replica
The following error occurs when applying replica package to RSA SecurID Appliance by following the instructions about how to rename a replica on page 59 of the Appliance
Owner's Guide:
"Presented Replica Package is not destined for the current system. Select another location."
when applying a fully operational replica package to RSA SecurID Appliance 2.0 replica.
To correct this issue, follow these steps:
- Open up database administration on the Primary SecurID 2.0 Appliance and select agent host, add agent host, and add a new agent host entry for the new replica name. Select NetOS agent. Select open to all locally known users.
- Go to System, System configuration, Edit system parameters, and uncheck allow db push assisted recovery. Select OK.
- Go to the Replica, open up Database Administration Host Mode select agent host, view agent host, and look up the name of the new agent host to ensure it exists.
- Go to the Replica and select Start, Programs, RSA Security, and RSA Security Center. Select Local, Challenge, and change it to none.
Important Note: Log in in to the Replica via remote desktop with the Administrator user and the Administrator's Windows password to make sure you can gain access to the box before proceeding
- On the Primary go to Start, Programs, RSA Security, RSA Authentication Manager Control Panel, Start & Stop RSA Auth Mgr Services and select stop all. Exit.
- On the Primary go to Start, Programs, RSA Security, RSA Authentication Manager Replica Management.
- Select the old replica and delete
- Select Add Replica and add the new replica
Important Note: Be sure to select resolve ip address to ensure the new name resolves properly
- Select the Replica and select Generate Replica Package. Overwrite the existing package if prompted to do so.
- On the Primary go Start, Programs, RSA Security, RSA Authentication Manager Control Panel, Start & Stop RSA Auth Mgr Services and select start all. Exit.
- Manually copy the C:\authmgr\ace\data\replica_package directory to the desktop of the replica
- On the replica go Start, Programs, RSA Security, RSA Authentication Manager Control Panel, Start & Stop RSA Auth Mgr Services and select stop all. DO NOT EXIT. (very important... leave this window open for the duration of this exercise.)
- On the replica right click on my computer, and change the name of the replica appliance to the new name
Important Note: Select No to restart later
- Right click on My Network Places, go to Properties, and select MAC Bridge Miniport. Select TCP/IP and then properties.
- Change the IP address of the replica to match the new name. Select OK and then close.
- On the Replica go to the RSA Authentication Manager Control Panel which we left open
- Select Apply Replica Package and browse to the new replica_package folder we copied to the desktop. Now select Apply Configuration and browse to the replica_package/license directory. Select OK.
- On the replica, go to Start, Programs, RSA Security, RSA Authentication Manager Configuration Tools, RSA Authentication Manager Configuration Management, and select edit, OK.
- Go to the THIS SERVER field and change it to the new name. When it asks "the server name you have entered is different from the resolved one do you want to update it?" select Yes. What this will do is change the ip correctly but the old name will "re-appear" This is a bug and its ok to simply retype the name again in the THIS SERVER field. Select OK again. When you are prompted again to resolve say No. Select OK and then select YES. Select OK.
- On the Replica go to Start, Programs, RSA Security, RSA Security Center, Advanced Settings, and select Clear Node Secret. Agree by selecting Yes. Select OK and exit.
- On the replica go to the RSA Authentication Manager Control Panel which we left open and select start all.
- Go to the primary and add a test user. Confirm it makes it to the replica. After confirming that the user is replicated reboot the replica. Enable authentication again by going to the security center and changing the challenge options to what you had before and test.