Data Domain: Off-premises Data Domain Virtual Edition Running From AWS Goes Down After Moving From IMDSv1 to IMDSv2
Summary: Data Domain Virtual Edition (DDVE) hosted on AWS goes down after moving from Instance Metadata Service version 1 (IMDSv1) to Instance Metadata Service version 2 (IMDSv2).
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
Off-premises DDVEs hosted on AWS goes down after moving from IMDSv1 to IMDSv2.
Some customer security teams may require DDVEs go from AWS IMDSv1 to IMDSv2 for security hardening. After applying the change, the affected DDVEs become inaccessible and the DDVE goes unusable.
Per Amazon article Use IMDSv2
For any DDVE running on an AWS EC2 instance where IMDSv2 is enabled, follow AWS article below to make IMDS v2 optional for the DDVE EC2 instances (and be allowed to run the DDVE until able to upgrade to DDOS 7.10 or later): Modify instance metadata options for existing instances
Some customer security teams may require DDVEs go from AWS IMDSv1 to IMDSv2 for security hardening. After applying the change, the affected DDVEs become inaccessible and the DDVE goes unusable.
Per Amazon article Use IMDSv2
- Instance Metadata Service Version 1 (IMDSv1) is a request-response method.
- Instance Metadata Service Version 2 (IMDSv2) is a session-oriented method.
For any DDVE running on an AWS EC2 instance where IMDSv2 is enabled, follow AWS article below to make IMDS v2 optional for the DDVE EC2 instances (and be allowed to run the DDVE until able to upgrade to DDOS 7.10 or later): Modify instance metadata options for existing instances
Affected Products
Data Domain Virtual EditionArticle Properties
Article Number: 000197325
Article Type: How To
Last Modified: 05 Jun 2023
Version: 4
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.