Symptoms

Cloud unit in disconnected state due to SSL connect error. ddfs.info:Error: list_bucket failed for profile with err 5341: SSL connect error. # alert show current Id Post Time Severity Class Object Message ----- ------------------------ -------- -------- ------------------- ------------------------------------------------------------------------------------------------------------- m0-13 Mon Oct 14 18:25:10 2024 CRITICAL Cloud CloudUnit=AzurePLZ2 EVT-CLOUD-00001: Unable to access provider for cloud unit ----- ------------------------ -------- -------- ------------------- -------------------------------------------------------------------------------------------------------------

Cause

There was a problem with an SSL operation. Ensure that you have the correct certificate for the cloud provider imported into the DD. Cloud endpoint address does not have a fixed public IP address. The IP address changes over time for security reasons.IF firewall configuration is done to connect to cloud provider endpoint using IP address, then when the IP address gets changed Data Domain is unable to reach the endpoint.

Resolution

Configure a cloud endpoint in Firewall using FQDN rather than relying on IP Address.DNS resolves the FQDN to the current IP address or changed IP address.If FQDN configuration cannot be done in client-side, Firewall then regularly update the firewall rules to include current IP ranges for endpoint connectivity. Note: Relying on IP address for cloud storage endpoints is not recommended due to its dynamic nature, it is best to use the FQDN and implement appropriate authentication and authorization mechanisms for secure access.

Support Cases