Multi-factor authentication (preview)

This feature is currently in preview and is only available to select customers.

Multi-Factor Authentication (MFA) is a security measure that requires users to provide additional forms of verification to access an application or data.

The current implementation of MFA for Dynatrace SaaS is targeted for use by non-federated users and uses email as a verification method. This involves sending a one-time code to the user's registered email address. Additional verification methods will be added in the future.

Account administrators can choose to enable MFA for any of the Dynatrace accounts they manage and also enforce it for environments within those accounts.

Enable MFA for account

Account administrators can choose to enable MFA for any of the Dynatrace accounts they manage. This makes it possible for users they have invited into their accounts to individually enable MFA within their user profile page.

At this time, this operation is handled by Dynatrace and is only available to customers participating in this feature preview.

Enforce MFA for environment

Account administrators can choose to enforce MFA for any of the environments where MFA is enabled at the Dynatrace account level.

At this time, this operation is handled by Dynatrace and is only available to customers participating in this feature preview.

Enable MFA for user

The ability to enable or disable MFA for your user is only available if your user has access to a Dynatrace account where MFA is enabled. Only environments where MFA is enforced will invoke a verification code request.

To enable MFA for your user

  1. In your web browser, go to the following address:
    https://myaccount.dynatrace.com/profile?tab=security
  2. If MFA is not already enabled, select Enable.
  3. Confirm your selection.
  4. A verification code is sent to your registered email address. Copy and paste the code into the web form.

    If you don't receive a verification code, wait 30 seconds, check your junk email folder, or try resending the code.

  5. Select Verify to continue.

Disable MFA for user

The ability to enable or disable MFA for your user is only available if your user has access to a Dynatrace account where MFA is enabled. Only environments where MFA is enforced will invoke a verification code request.

To disable MFA for your user

  1. In your web browser, go to the following address:
    https://myaccount.dynatrace.com/profile?tab=security
  2. If MFA is not already disabled, select Disable.
  3. Confirm your selection.
  4. A verification code is sent to your registered email address. Copy and paste the code into the web form.

    If you don't receive a verification code, wait 30 seconds, check your junk email folder, or try resending the code.

  5. Select Verify to continue.

Frequently asked questions

Only users with access to Dynatrace accounts where MFA is enabled can see the MFA option under their profile page in Account Management.

If MFA is enabled on your Dynatrace account but you don't see the option to enable MFA in Account Management, please contact your account administrator.

Please wait 30 seconds, check your junk email folder, or try resending the verification code.

Only the latest verification code sent is valid. Please make sure you are using that code.

Most likely, the environment you're trying to access has MFA enforcement and your user doesn't have it enabled. Follow the steps above to enable MFA.

During this preview, all users associated with a Dynatrace account where MFA is enabled need to have MFA enabled to access environments where MFA is enforced. However, federated users won't be prompted for a verification code when accessing MFA-enforced environments.