Data Domain: EVT-SECURITY-00003 Alert After DD OS Upgrade | Missing Imported Certificate

After a DDOS upgrade, a security alert is reported about missing certificates:

Alerts History
--------------
Id        Post Time                  Clear Time                 Severity   Class               Object   Message                                          
-------   ------------------------   ------------------------   --------   -----------------   ------   -------------------------------------------------      
p0-414    Sat Aug 30 09:32:39 2025   Sat Aug 30 10:00:40 2025   NOTICE     SystemMaintenance            EVT-UPGRADE-00004: DD OS upgrade is in progress  
p0-415    Sat Aug 30 10:10:17 2025   Sat Aug 30 10:11:25 2025   INFO       SystemMaintenance            EVT-UPGRADE-00003: DD OS upgraded successfully.  
p0-416*   Sat Aug 30 10:12:12 2025   Sat Aug 30 10:14:26 2025   INFO       Filesystem                   EVT-FILESYS-00012: System rebooted               
m0-11     Sat Aug 30 10:09:46 2025   Sat Aug 30 10:11:25 2025   WARNING    Security                     EVT-SECURITY-00003: Missing imported certificate.
m0-12     Sat Aug 30 10:10:08 2025   Sat Aug 30 10:11:26 2025   WARNING    Security                     EVT-SECURITY-00003: Missing imported certificate.
-------   ------------------------   ------------------------   --------   -----------------   ------   -------------------------------------------------

A code defect in the upgrade process triggers the alert on systems that:

• Have a passphrase set
• Use self-signed certificates

The alert is generated when the system attempts to reencrypt imported certificates and incorrectly sets the registry value (config_master.comm.ext.selfsigned=false)

This alert is cosmetic and does not affect system operations.

Fix:

The issue is resolved in the following DD OS versions:

• >=7.13.1.50
• >=8.3.1.20

Workaround:
Clear the alert.

• DD-CLI command # alert clear <alert-id>