Hi Everyone, we’re in the process of configuring an additional VA. Initially, after pairing, the UI displays “VA CCG Version Unavailable,” even though the status shows as connected. However, after a day, the same message persists, and we’re unable to use this new VA in a target source.
We attempted to call the new VA to a source and tried testing the connection, but an error indicated a connection timeout.
Next action, we attempted a va-bootstrap reset and tried to pair again through the UI. Unfortunately, after this, we can’t add the new VA because it indicates that “VA is already paired.” Now, we’re unable to add the new VA in the UI, and the previous configuration for it has disappeared from the interface.
@Rpalos please try to connect one source and see if the ccg version comes up if not then you can check with sailpoint support and get an updated version of ccg image and try again
I also tried using the new VA with a target source, but it returned a “connection timeout” error. Then, I checked the VA CCG version, and it is still unavailable.
Also, one thing I observed, the ccg service keep on dropping. Every time I restarted, the status is ACTIVE. but in a few minutes, it change to “ACTIVATING”
I faced this kind of an issue but not the exact scenario. In the production tenant, the VA Cluster was in Inactive state and both VAs were paired but in Unhealthy State. We raised the SailPoint Ticket and eventually, the issue was not resolved but at least the connections were working with downstream and upstream sources.
After couple of months, the entire VA Cluster was automatically emptied and both VAs were deleted from CLUSTER, though that VA CLUSTER was used by nearly 80 sources. Note that our VAs were hosted over on-premise servers and then, because of this issue, we migrated to AWS.
Its very strange that you are facing this issue on AWS because the VA images that SailPoint shares are fairly stable.
I would recommend you to connect with SailPoint Support and do the following.
Provide them the entire data generated post execution of stunt.sh script on VAs.
Meanwhile, Ask SailPoint to push the latest VA Image on your AWS Account Number for respective organization
Re-Create the VAs using new image shared by them.
I think there is high possibility that VA image that you were using could have an issue or it was corrupted.