When activating a virtual machine (VM) from Deep Security Manager (DSM) console, you encounter the following error:
Activation failed (Unable to resolve Hostname)
This issue happens because DSM fails to contact Deep Security Agent (DSA) during activation.
To resolve the issue:
For Amazon Web Services (AWS):
Open the ports used by DSM to communicate to DSA. You may refer to this KB article: IP address to exclude from firewall to allow Deep Security Manager (DSM) to Deep Security Agent (DSA) communication.
For Microsoft Azure:
Use agent-initiated activation and agent-initiated communication direction.
All Azure VMs grouped together in the same web app share the same public IP address and use NAT and port forwarding to pass traffic through the VMs. This is why a non-standard RDP port should be used to connect to the Azure VM. Hence, Azure VMs should always use agent-initiated activation and agent-initiated communication.