Data Domain: Web UI reports "Mutual trust may have to be reestablished" in "Replication - Automatic - Summary"

Summary: Data Domain Web UI reported "Mutual trust may have to be reestablished" in "Replication - Automatic - Summary" section, instead of current replication status.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

Issue:
Web UI reported the following message in "Replication - Automatic - Summary" section, instead of current replication status.

Mutual trust may have to be reestablished

Meanwhile, CLI "replication show stats" and "replication status" successfully reported current replication status.

Symptom:
Web UI - Replication - Automatic - Summary - select a replication context/pair.

Error connecting to remote host:

Mutual trust may have to be reestablished between Management Host [<local-web-GUI-DD>] and [<remote-replication-DD>].

 

Cause

Web UI is case-sensitive.

If remote-replication-DD is added to local-DD web UI (Replication > Automatic > Manage Systems) in different capitalization than its actual hostname and trust record, then web UI cannot locate the corresponding trust for replication context/pair between local-web-GUI-DD and remote-replication-DD, and error "Mutual trust may have to be reestablished" is reported.

Web UI:
Replication > Automatic > Manage Systems.
Host       DDVE_TSE1.datadomain.com

CLI:

sysadmin@dd7200# replication show config
CTX   Source                                                   Destination                                     Connection          4     mtree://DDVE_TSE1.datadomain.com/data/col1/testrepl   mtree://dd7200.datadomain.com/data/col1/testrepl   DDVE_TSE1.datadomain.com*

sysadmin@dd7200#reg show protocol.gui
protocol.gui.ddem.inventory.4.host_name = DDVE_TSE1.datadomain.com
protocol.gui.ddem.inventory.4.mif = DDVE_TSE1.datadomain.com
protocol.gui.ddem.inventory.4.proxy = DDVE_TSE1.datadomain.com

sysadmin@dd7200#adminaccess trust show
Subject                         Type         Valid From                 Valid Until                Fingerprint
------------------------   ----------   ------------------------   ------------------------   ------------------------------------------------------------
ddve_tse1.datadomain.com   trusted-ca   Sat Jul  1 17:33:41 2017   Tue Jun 23 17:33:41 2048   bb:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx

 

Resolution

Resolution:
Re-create record in "Replication > Automatic > Manage Systems" and "trust," to make remote-replication-DD hostname capitalization identical.

Procedure:

  1. Add fake host entry to local-web-GUI-DD using CLI.

    net hosts add 1.1.1.1 a.b.com

  2. Disable replication context using CLI.

    replication disable <destination>

    Example:

    replication disable mtree://dd7200.datadomain.com/data/col1/testrepl

  3. Modify a remote-replication-DD hostname to a fake hostname using CLI.

    replication modify <destination> destination-host|source-host  a.b.com

    Example:

    replication modify mtree://dd7200.datadomain.com/data/col1/testrepl source-host a.b.com

    *If ddve_tse1 is the replication destination, then run:

    replication modify mtree://DDVE_TSE1.datadomain.com/data/col1/testrepl destination-host a.b.com

  4. Remove remote-replication-DD using UI. Go to local-DD web UI (Replication > Automatic > Manage Systems), select remote-replication-DD, click remove, and OK.

  5. Remove trust using CLI.

    adminaccess trust del host <remote-replication-DD>

    Example:

    adminaccess trust del host ddve_tse1.datadomain.com

  6. Add remote-replication-DD with actual capitalization in hostname using UI. A new trust is added during the operation (sysadmin password required). Go to local-DD web UI (Replication > Automatic > Manage Systems), click add - enter remote-replication-DD hostname with actual capitalization, click OK.

  7. Modify the remote-replication-DD hostname to the actual hostname using CLI.

    replication modify <destination> destination-host|source-host  <actual_FQDN>

    Example:

    replication modify mtree://dd7200.datadomain.com/data/col1/testrepl source-host ddve_tse1.datadomain.com

    *If ddve_tse1 is the replication destination, then run:

    replication modify mtree://a.b.com/data/col1/testrepl destination-host ddve_tse1.datadomain.com

  8. Enable replication context using CLI.

    replication enable <destination>

    Example:

    replication enable mtree://dd7200.datadomain.com/data/col1/testrepl

  9. Check replication status using UI (Replication Automatic Summary).

  10. Delete fake hosts entry to local-web-GUI-DD using CLI.

    net hosts del 1.1.1.1 a.b.com

 

Affected Products

Data Domain

Products

Data Domain
Article Properties
Article Number: 000078428
Article Type: Solution
Last Modified: 12 Dec 2025
Version:  6
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.