Cybersecurity
DevOps Cloud
IT Operations Cloud
The purpose of this document is to guide you on how to deploy this cool-solution/tip/how-to to get your Cloud Bridge Agents (CBAs) working in a manual active/passive setup allowing a certain degree of availability.
Figure 1: High-Level Architecture of an IAM SaaS tenant and CBAs.
IMPORTANT NOTE: CBA installs and upgrades must always be performed with the assigned IAM SaaS Technical Success Manager (TSM).
Run: docker ps or podman ps depending on the container technology you are using, you should see something like this:
Figure 2: CBA running image version.
Figure 3: AAaaS External repository full synchronization.
Figure 4: Identity Collector test connection.
Depending on the container technology, run: docker stop bridge-agent or podman stop bridge-agent on your Active CBA. See Section 4 How to start and stop a docker/podman container below.
Figure 5: Full Synchronization and Force Configuration.
Figure 6: CBA credentials handling tool.
An important consideration for this scenario: you will need both CBAs running to perform these steps; in any case, you have to make sure only one of the CBAs is running your bridge-agent container at a time; otherwise, it will cause a conflict, and it won’t work.
Run (docker): docker start bridge-agent
Run (podman): podman start bridge-agent
Or
Run (positioned on your agent folder): ./start.sh
Run: (docker): docker stop bridge-agent
Run: (podman): podman stop bridge-agent
Or
Run (positioned on your agent folder): ./stop.sh
IMPORTANT NOTE: you have to make sure only one of the CBAs runs your bridge-agent container at a time.
IMPORTANT NOTE: Get in touch with the CoE or IAM SaaS TSM if you have problems with your CBAs.