Azure Arc
A Microsoft cloud service that enables deployment of Azure services across hybrid and multicloud environments.
459 questions
Azure Arc endpoint not reachable
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 1%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPB%3C/text%3E%3C/svg%3E)
Peter Brigham
0
Reputation points
We setup Arc a while back and have onboarded a bunch of VMs onsite through a private scope link.
All was working fine until a few days ago a lot of them became disconnected.
Upon checking the agent we now get this:
azcmagent check
INFO Testing connectivity to endpoints that are needed to connect to Azure... This might take a few minutes.
Use Case |Endpoint |Reachable |Private |TLS |Proxy
core |https://agentserviceapi.guestconfiguration.azure.com |true |unknown |TLS 1.3 |set
core |https://gbl.his.arc.azure.com |true |unknown |TLS 1.3 |set
core |https://login.microsoftonline.com |true |unknown |TLS 1.3 |set
core |https://management.azure.com |true |unknown |TLS 1.3 |set
core |https://pas.windows.net |true |unknown |TLS 1.3 |set
core |https://uks.his.arc.azure.com |false |unknown |unknown |set
core |https://uksouth-gas.guestconfiguration.azure.com |true |unknown |TLS 1.3 |set
host uks.his.arc.azure.com
uks.his.arc.azure.com has address 10.100.5.5
If we run the onboard script again:
FATAL required endpoints unavailable: https://uks.his.arc.azure.com (error: Get "https://uks.his.arc.azure.com/connectivitytest": context deadline exceeded (Client.Timeout exceeded while awaiting headers))
azcmagent Logs:
time="2025-01-09T12:27:16Z" level=debug msg="Endpoint properties" error="Get "https://uks.his.arc.azure.com/connectivitytest": context deadline exceeded (Client.Timeout exceeded while awaiting headers)" hostname=uks.his.arc.azure.com ipAddresses= private=unknown proxyStatus=set requiredForPrivateLinkScope=true tls=unknown useCase=core
DNS records all seem fine our end, and the vpn to azure appears to be working as the others connect fine.
Is there a service status page for azure connectors anywhere or something??
I've double checked the settings, and nothing has changed on our end, so I'm not really sure what to do next - can I troubleshoot the endpoint in Azure somehow??
Pete.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 20%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Pranay Reddy Madireddy 1,395 Reputation points Microsoft Vendor2025-01-10T19:55:51.4966667+00:00 Welcome to the Microsoft Q&A Platform! Thank you for asking your question here.
Check that the virtual machines are running and healthy. You can do this by trying to connect to them using Remote Desktop or SSH.
Use the command azcmagent show to check the status of the Azure Connected Machine Agent and confirm that it is properly installed and functioning.
The azcmagent check command shows that some endpoints, like uks.his.arc.azure.com, are not reachable. This could be due to network problems or firewall settings. Check to see if any changes have been made to the network that might be blocking access to this endpoint.
Since your DNS records appear to be fine, make sure that the DNS settings on your VM are properly configured to resolve Azure endpoints.
If the agent was connected before but is now disconnected, try running this command:
azcmagent connect --location "your_location" --resource-group "your_resource_group" --subscription-id "your_subscription_id"
There isn't a specific status page for Azure connectors, but you can check the Azure status page for any current issues with services in your region.
Check the logs from azcmagent for any error messages that might give you more information about the issue.
Make sure that any VPNs or firewalls allow traffic to Azure endpoints, especially the ones shown in your connectivity test results.
For reference, please review this documentation :-
https://techcommunity.microsoft.com/blog/itopstalkblog/troubleshooting-azure-arc-for-servers---status-offline/1342751
https://learn.microsoft.com/en-us/azure/azure-arc/servers/troubleshoot-agent-onboard
https://learn.microsoft.com/en-us/azure/azure-arc/resource-bridge/troubleshoot-resource-bridgeIf you have any further queries, do let us know.
If the answer is helpful, please and "Upvote it".
Sign in to comment
Sign in to answer