The Bastion Agent is a service that checks the Bastion's and LAC's responsiveness and takes a resolution remedial action.
It works by sending a health check request to the Bastion and LAC. if If the Bastion and/or LAC Filter does not respond as expected, the script will try to restart the Bastion service.
Processing
The agent runs the monitoring process each predefined number of seconds (default is 10) and does the following:
• Check if Bastion service is running
• If not - start the Bastion service
• Call Bastion health check requesting https://[BastionIp]/skypeshieldhealth with host header BastionHealthcheck Host, for example https://127.0.0.1/skypeshieldhealth with host header lyncdiscover.skypeshield.com
• If received HTTP 200 status code - Bastion and LAC are OK - no restart is done
• If received other HTTP status or error/exception - except status 404/403/401
Will try to restart Bastion service after 3 consecutive failures every 10 seconds - only if already in production mode.
• No restart is done if still not in production mode - not received 5 sequences OK results.
Info |
---|
Bastion Agent will go into production mode (restart on error) only after receiving a working response for 5 times indicating the correct operation to avoid misconfigurations in installation. |
Configuration
The default location of the configuration file is located at:
...
9.BastionRestartTimeoutSeconds - How long should the agent wait for a restart to complete. If the service is not able to start, the agent will create an event for manual operation to be done.
10.MaxHealthcheckLatencyMilliseconds - maximum latency for the health check response. Set 0 to disable latency check.
11.EmailIssues - for which type of issues should an email be sent. you You can set the following values: all, dbConnectionFailure, restartFailure, restartSuccess.
Multiple values should be separated by a comma. All values except blank need SMTP configuration.
12.SMTP_* - SMTP configuration for emails:
...