This article discusses access tokens used in previous Dynatrace to authenticate to classic Configuration and Environment APIs. For the latest Dynatrace access, see Platform tokens and OAuth clients.
Normally, access tokens require admin rights to generate. With personal access tokens, however, you can generate a token for API usage without admin rights. Available scopes are not pre-filtered based on your user permissions. Instead, your permissions are checked whenever you use your personal access token to authorize a request. You're also limited to the data from management zones you have access to.
A personal access token is bound to you. You can't generate a personal access token for another user.
Admin rights are required to enable this feature. After it's enabled, any user can generate a personal access token.
To enable personal access tokens
To generate a personal access token
You can only access your token once upon creation. You can't reveal it afterward.
Name
API value
Description
Read analyzers
analyzers.read
Write and execute analyzers
analyzers.write
Write API tokens
apiTokens.write
Grants access to POST, PUT, and DELETE requests of the Access tokens API.
Read attacks
attacks.read
Grants access to GET requests of the Attacks API and attack-related schemas in the Settings API.
Write Application Protection settings
attacks.write
Grants access to POST, PUT, and DELETE requests of the Settings API for Application Protection.
Read entities
entities.read
Grants access to GET requests of the Monitored entities and Custom tags APIs.
Write entities
entities.write
Grants access to POST, PUT, and DELETE requests of the Monitored entities and Custom tags APIs.
Actions for extension monitoring configurations
extensionConfigurationActions.write
Read extensions monitoring configuration
extensionConfigurations.read
Grants access to GET requests from the Extensions monitoring configuration section of the Extensions 2.0 API.
Write extensions monitoring configuration
extensionConfigurations.write
Grants access to POST, PUT, and DELETE requests from the Extensions monitoring configuration section of the Extensions 2.0 API.
Read extensions
extensions.read
Grants access to GET requests from the Extensions section of the Extensions 2.0 API.
Write extensions
extensions.write
Grants access to POST, PUT, and DELETE requests from the Extensions section of the Extensions 2.0 API.
Read Geographic regions
geographicRegions.read
Grants access to GET requests of the Geographic regions API.
Install and update Hub items
hub.install
Grants permission to install and update extensions via the Hub items API.
Read JavaScript mapping files
javaScriptMappingFiles.read
Grants access to GET requests of the JavaScript mapping files API.
Write JavaScript mapping files
javaScriptMappingFiles.write
Grants access to PUT and DELETE requests of the JavaScript mapping files API.
Write metrics
metrics.write
Grants access to the DELETE a custom metric request of the Metrics API v2.
Write network zones
networkZones.write
Grants access to POST, PUT, and DELETE requests of the Network zones API.
Read RUM cookie names
rumCookieNames.read
Read security problems
securityProblems.read
Grants access to GET requests of the Security problems API.
Write security problems
securityProblems.write
Grants access to POST requests of the Security problems API.
Write SLOs
slo.write
Grants access to POST, PUT, and DELETE requests of the Service-level objectives API.
Look up a single trace
traces.lookup
Check whether a trace is present. This is required to use cross-environment tracing.
Read Unified Analysis page
unifiedAnalysis.read
Grants access to the Unified analysis schema in the Settings API.