This page provides a list of feature flags that can be used to configure Dynatrace Operator on Kubernetes. Feature flags are used to enable or disable specific features.
To set a feature flag.
dynakube.yaml).annotations field.annotations, add the feature flag you want to set in the format flag: value.
apiVersion: dynatrace.com/v1beta5kind: DynaKubemetadata:name: dynakubenamespace: dynatraceannotations:feature.dynatrace.com/<flag>: <value>
kubectl apply -f <file-name>.yaml.| Feature flag | Default value | Data type | Description | Minimum Dynatrace Operator version |
|---|---|---|---|---|
|
| boolean | Enables or disables build label propagation, providing build and version metadata information to the injected OneAgent about the newly deployed Pods. | 0.10.0 |
|
| boolean | Disables or enables automatic injection for namespaces that are monitored by this DynaKube. Dynatrace Operator can be set to monitor namespaces without injecting into any Pods, so you can choose which Pods to monitor. Pods that should be injected have to be annotated with | 0.8.0 |
|
| string | List of URLs to be excluded from the proxy configuration. Applies to all core components of the Dynatrace Operator and to the following components that are managed by Dynatrace Operator: OneAgent, OneAgent Log Module, ActiveGate, OpenTelemetry Collector.
Use a comma-separated list of hostnames (for example, | 0.11.0 |
|
| string | The failure policy determines what should happen when OneAgent injection fails for a particular Pod in a Kubernetes cluster. By default, the failure policy is set to silent. You can override the failure policy for all injected Pods that match the DynaKube.
| 0.11.0 |
|
| boolean | Enables or disables the adding of a default seccomp-profile to the Dynatrace init-container. The seccomp (secure computing mode) profile determines the system calls that a process in the initContainer can make. By default, the seccomp profile is not set. If enabled the | 0.11.2 |
|
| boolean | Configures auto updates for the ActiveGate Pods. | 0.3.0 |
|
| boolean | Sets AppArmor annotation on the ActiveGate Pod to | 0.7.0 |
|
| boolean | Connects a containerized ActiveGate to a local Kubernetes API endpoint. | 0.6.0 |
|
| string | Specifies the name the Kubernetes cluster is identified by in Dynatrace. | 0.7.0 |
|
| int | Sets the maximum number of unavailable OneAgent Pods during an update, equivalent to | 0.6.0 |
|
| int | Configures the timeout in milliseconds for OneAgent for | 0.7.0 |
|
| int | Defines the maximum number of attempts for the Dynatrace Operator CSI driver to mount a volume. If this limit is reached, the Pod will start with a dummy volume, which will result in missing out on deep monitoring data. | 0.9.0 |
|
| boolean | Configures OneAgent (and Log Agent if configured) container to run privileged. | 1.0.0 |
|
| string | Defines the maximum timeout for the Dynatrace CSI driver to mount a volume. If this timeout is exceeded, the pod will start with a dummy volume and without being monitored. | 1.5.0 |
|
| boolean | Configures the Dynatrace Operator to manage the TLS certificate for the in-cluster ActiveGate and distribute it to components that communicate with it. Requires ActiveGate version 1.307+. | 1.5.0 |
|
| boolean | Configures the node image pull feature. | 1.5.0 |
|
| string | Known issue Due to a known issue, please refrain from using this feature flag. See Dynatrace Operator version 1.5.1 release notes for details. Can be applied to an application pod or your DynaKube to configure which Dynatrace code module technologies are provided. See our node image pull feature guide for more information. | 1.5.0 |
A list of feature flags that have been deprecated in the latest versions of Dynatrace Operator.
If the Last Dynatrace Operator version for a feature flag has passed, the flag has been officially removed and should no longer be used.
| Feature flag | Default value | Data type | Description | Minimum Dynatrace Operator version | Last Dynatrace Operator version |
|---|---|---|---|---|---|
|
| boolean | Controls read-only mode for OneAgents in | 1.2.2 | 1.3.2 |
|
| boolean | Changes the securityContext on the ActiveGate Pod to enforce a readonly filesystem. | 0.6.0 | 0.15.0 |
|
| string | The minimum time in minutest between requests from the Dynatrace Operator, which was previously hard coded to 15 minutes in order to reduce network load. The specified interval is counted independently for each of these request types. | 0.11.0 | 1.1.1 |
|
| string | Enables or disables the adding of a default seccomp-profile to the Dynatrace OneAgent. The seccomp (secure computing mode) profile determines the system calls that a process in the initContainer can make. By default, the seccomp profile is not set. If enabled a custom seccomp profile is used, which needs to be added to the Cluster. | 0.11.0 | 1.1.1 |
|
| boolean | Configures the metadata-enrichment feature within the Dynatrace Operator. This feature enriches the metrics collected by the Dynatrace OneAgent with additional context, such as the host or process group instance from which the metrics were collected. | 0.8.0 | 1.1.1 |
|
| boolean | Prevents propagation of the proxy setting from the DynaKube to the ActiveGate Pod. | 0.6.0 | 1.3.0 |
|
| boolean | Prevents propagation of the proxy setting from the DynaKube to the OneAgents. | 0.6.0 | 1.3.0 |
|
| boolean | Configures the CSI volumes as read-only, when injected by the webhook. | 0.12.0 | 1.6.0 |