Requirements for private Synthetic locations

  • Reference
  • 15-min read

Ensure that the host you want to use for your private location complies with the following requirements.

End-of-support information

There are no new versions of Chromium for Red Hat/Oracle Linux/Rocky Linux 8 beyond version 133. For important security and stability reasons, we've decided to discontinue our support for installing Synthetic-enabled ActiveGate on Red Hat/Oracle Linux/Rocky Linux 8 after ActiveGate version 1.325.

To ensure the continuity and security of your synthetic monitors, we recommend migrating your Synthetic-enabled ActiveGate to one of the supported operating systems, for example Red Hat/Oracle Linux/Rocky Linux 9.

We plan to have ActiveGate version 1.325 as the last Synthetic-enabled ActiveGate supported on Red Hat/Oracle Linux/Rocky Linux 8.

Additionally, with Dynatrace version 1.326, we plan to introduce mechanisms preventing Synthetic-enabled ActiveGates on Red Hat/Oracle Linux/Rocky Linux 8 from being updated beyond version 1.325.

Additional support notes
  • Chromium development for Amazon Linux 2 stopped at version 126. For important security and stability reasons, we've decided to discontinue our support for installing Synthetic-enabled ActiveGate on Amazon Linux 2 after ActiveGate version 1.307. ActiveGate version 1.307 is the last Synthetic-enabled ActiveGate to support Amazon Linux 2. Additionally, with Dynatrace version 1.308, we have introduced mechanisms preventing Synthetic-enabled ActiveGates on Amazon Linux 2 from being updated beyond version 1.307.
  • Chromium development for Red Hat/CentOS 7 stopped at version 126. For important security and stability reasons, we've decided to discontinue our support for installing Synthetic-enabled ActiveGate on Red Hat/CentOS 7 after ActiveGate version 1.305. ActiveGate version 1.305 is the last Synthetic-enabled ActiveGate to support Red Hat/CentOS 7. Additionally, with Dynatrace version 1.306, we have introduced mechanisms preventing Synthetic-enabled ActiveGates on Red Hat/CentOS 7 from being updated beyond version 1.305.
  • Check the latest ActiveGate release notes for the oldest supported ActiveGate versions.

Operating system requirements

Antivirus and Anti-Malware software

Antivirus and anti-malware software can adversely affect Dynatrace Synthetic monitoring capabilities. The antivirus or anti-malware software might block the Chromium browser or Dynatrace processes responsible for executing synthetic monitors, cause Synthetic-enabled ActiveGate installation failures, interfere with network communication, and impact the reliability of measurements.

Please also note

To ensure proper stability and performance, consider adding the following directories and processes to the allowed list or excluding them from the policy:

Directories:

  • All directories with synthetic in their path. For an overview of directories in use, see ActiveGate directories.

Processes:

  • chrome
  • vucwrapper
  • java

This is the minimal list of processes and directories required for Dynatrace Synthetic to operate. It's not guaranteed that the service will function correctly with only these exclusions. Collaborate with your vendor to appropriately allow expected behaviors from Dynatrace.

Prior to contacting Dynatrace support to troubleshoot issues with your private synthetic locations make sure that antivirus or anti-malware software was excluded as a source of problems.

A freshly installed ActiveGate can run your private synthetic monitors (both HTTP and browser monitors) on the following operating systems.

Windows

Supported operating systems

Windows OSVersions
Windows Server2016, 2019, 2022

Chromium version on Windows

On Windows, the ActiveGate installer package includes the Chromium browser used to run browser monitors. The table below shows the Chromium versions that are bundled with the respective ActiveGate versions.

ActiveGate versionIncluded Chromium version
1.319138
1.317137
1.315136
1.313135
1.311134
1.309133
1.307132
1.305130
1.303129
1.299 to 1.301128
1.295 to 1.297126
1.293125

Unsupported Windows versions for testing purposes only

If you only want to test private Synthetic locations on a non-production host, for example, your own desktop, you can install a Synthetic-enabled ActiveGate on unsupported Windows versions such as Windows 10 or Windows 11.

As of ActiveGate version 1.263+, Synthetic-enabled ActiveGate no longer works on Windows Server 2012 for testing purposes. Google has dropped support for Windows 2012 Server with Chromium 110, which is bundled with the ActiveGate version 1.263 installation package.

Linux

Supported operating systems

Linux distributionVersions
Red Hat Enterprise Linux18.8, 8.10, 9.2, 9.4, 9.5
Ubuntu20.04, 22.04, 24.04
Amazon Linux2023
Oracle Linux28.10, 9.5
Rocky Linux38.10, 9.6
1

The Synthetic installer can be installed on all minor releases of Red Hat Enterprise Linux 8 and 9. However, we recommend using the versions listed in this table, as they have Extended Life-cycle Support (ELS) according to Red Hat Enterprise Linux Life Cycle.

2

The Synthetic installer can be installed on all minor releases of Oracle Linux 8 and 9. However, we recommend using the latest currently supported versions according to documentation for Oracle Linux 8 and Oracle Linux 9.

3

The Synthetic installer can be installed on all minor releases of Rocky Linux 8 and 9. However, we recommend using the latest currently supported versions according to Rocky Linux Release and Version Guide.

Deprecated operating systems

Linux distributionVersions
Red Hat Enterprise Linux7.91
CentOS7.91
Amazon Linux22
1

ActiveGate version 1.305 is the last Synthetic-enabled ActiveGate to support Red Hat/CentOS 7.

2

ActiveGate version 1.307 is the last Synthetic-enabled ActiveGate to support Amazon Linux 2.

Chromium versions on Linux

We strongly recommend that you keep your Linux-based Synthetic-enabled ActiveGates and Chromium versions updated—Dynatrace supports Chromium versions that are no more than two versions behind the latest Dynatrace-supported version for a specific ActiveGate release. For example, if the latest supported Chromium version is 103, Dynatrace supports up to Chromium version 101. If the provided Chromium version is significantly older for a specific OS, we support only the provided version. See information on updating Chromium automatically and manually.

On Linux, the ActiveGate installer downloads the Chromium dependencies that are required by the Synthetic engine. On Red Hat and Rocky, you need to enable particular repositories from which the installer downloads the dependencies. The Dynatrace web UI provides you with all the required commands. For detailed instructions, see Create a private synthetic location.

When installing ActiveGate and Chromium from a custom, local repository, you need to resolve all dependencies and enable repositories as required; the custom repository can be used only for Chromium packages, not their dependencies. Place the Chromium package archive and the signature file in the custom repository for installation. If your package archive file is https://synthetic-packages.s3.amazonaws.com/Chromium/snap/chromium-107.0.5304.87-2168.tgz (Chromium 107 for Ubuntu 20 and 22 on ActiveGate version 1.255), you can find the signature file by appending .sig to the URL: https://synthetic-packages.s3.amazonaws.com/Chromium/snap/chromium-107.0.5304.87-2168.tgz.sig.

  • Chromium development for Red Hat/CentOS 7 and Amazon Linux 2 stopped at version 126.

Due to changes in libdav1d.so.6 packet availability Chromium versions older than 130 cannot be installed on Red Hat/Rocky Linux 9. Please refer to troubleshooting guide for details.

ActiveGate versionLatest supported Chromium version
Red Hat, CentOS, Oracle Linux 8		Latest supported Chromium version
Ubuntu		Latest supported Chrome for Testing version
Amazon Linux 2023, Ubuntu 24, Oracle Linux 9
1.319133 Red Hat/Oracle/Rocky Linux 8, 138 Red Hat/Rocky Linux 9138 Ubuntu 20.04 and 22.04138
1.317133 Red Hat/Oracle/Rocky Linux 8, 137 Red Hat/Rocky Linux 9137 Ubuntu 20.04 and 22.04137
1.315133 Red Hat/Oracle/Rocky Linux 8, 136 Red Hat/Rocky Linux 9136 Ubuntu 20.04 and 22.04136
1.3134133 Red Hat/Oracle/Rocky Linux 8, 135 Red Hat/Rocky Linux 9135 Ubuntu 20.04 and 22.04135
1.311133 Red Hat/Oracle/Rocky Linux 8, 134 Red Hat/Rocky Linux 9134 Ubuntu 20.04 and 22.04134
1.309132 Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9132 Ubuntu 20.04 and 22.04133
1.3073126 Amazon Linux 2, 131 Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9131 Ubuntu 20.04 and 22.04131
1.305126 Red Hat/CentOS 7 and Amazon Linux 2, 130 Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9130 Ubuntu 20.04 and 22.04130
1.303126 Red Hat/CentOS 7 and Amazon Linux 2, 129 Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9 requires chromium 130129 Ubuntu 20.04 and 22.04129
1.3012126 Red Hat/CentOS 7 and Amazon Linux 2, 128 Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9 requires chromium 130128 Ubuntu 20.04 and 22.04128
1.299126 Red Hat/CentOS 7 and Amazon Linux 2, 128 Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9 requires chromium 130128 Ubuntu 20.04 and 22.04
1.297126 Red Hat/CentOS 7 and Amazon Linux 2, Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9 requires chromium 130126 Ubuntu 20.04 and 22.04
1.295125 Red Hat/CentOS 7 and Amazon Linux 2, Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9 requires chromium 130125 Ubuntu 20.04 and 22.04
1.2931125 Red Hat/CentOS 7 and Amazon Linux 2, Red Hat/Oracle/Rocky Linux 8, Red Hat/Rocky Linux 9 requires chromium 130125 Ubuntu 20.04 and 22.04
1

Introduced support for Rocky Linux 8 and Rocky Linux 9.

2

Introduced support for Amazon Linux 2023.

3

Introduced support for Ubuntu 24.

4

Introduced support for Oracle Linux 9.

File Access Policy Daemon framework (fapolicyd)

If not configured correctly, the File Access Policy Daemon (fapolicyd) can potentially affect Dynatrace Synthetic monitoring capabilities. Similarly to antivirus or anti-malware software, fapolicyd might block the Chromium browser or Dynatrace processes responsible for executing synthetic monitors.

To ensure proper stability and performance, consider adding directories and processes to the allowed list or excluding them from the policy. For more detailed information, refer to the Red Hat documentation on fapolicyd. Prior to contacting Dynatrace support to troubleshoot issues with your private synthetic locations, make sure that fapolicyd was excluded as a source of problems.

File Access Policy Daemon framework can be run in debug mode where all denials are logged, making tracking down missing rules and troubleshooting issues easier. For more detailed information about its debug mode, refer to the documentation on troubleshooting problems related to fapolicyd

Hardware requirements

General considerations

  • Note that a Synthetic-enabled ActiveGate has more demanding hardware and system requirements than a regular Environment or Cluster ActiveGate. We strongly recommend using a Synthetic-enabled ActiveGate exclusively for synthetic monitoring purposes.
  • Any additional component running on the host should be taken into account when planning resources provisioning. For instance, if the location is monitored by OneAgent or another deep monitoring solution, memory (RAM) requirements will increase.
  • You need to uninstall and reinstall your Synthetic-enabled ActiveGate to change its size, for example, after increasing the resources of your S-sized ActiveGate to meet the requirements for a size M. Reinstallation is required before you can make use of the updated resources for synthetic monitoring; otherwise, your ActiveGate will continue to show up as size S (Synthetic Node size) in Deployment Status and will be subject to the execution limits of size S.

Sizing guide

Based on the number of tests executed per hour, Synthetic-enabled ActiveGates need to meet the following hardware requirements.

Limit values

The estimated limits listed in the table below were determined in our internal tests. The actual values might vary depending on the complexity of your monitors.

XS node

While XS nodes can be used on Windows Server-based ActiveGates, they may not be the best fit due to the higher hardware demands of Chromium. For optimal performance and to prepare for future enhancements, we recommend having at least 8 GB of RAM and 25 GB of free disk space.

On Linux systems with only 4 GB of RAM, the increasing resource requirements of Chrome (or Chromium), combined with the installation of third-party tools on the host, may lead to occasional memory shortages. Upgrading to 8 GB of RAM is strongly recommended to help ensure a smoother and more reliable experience.

Node with browser monitor supportBrowserless node
Minimum CPUs2 vCPU1 vCPU
Minimum free disk space20 GB17 GB
Minimum RAM4 GB4 GB
Minimum free RAM3 GB2,7 GB
Minimum disk IOPS (Windows)100100
Estimated maximum number of HTTP monitor executions/h1300k300k
Estimated maximum number of high-resource HTTP monitor2 executions/h10k10k
Estimated maximum number of browser monitor executions/h300-
Estimated maximum number of NAM ICMP monitor packets/h3 5500k500k
Estimated maximum number of NAM TCP monitor requests/h4 61M1M
Estimated maximum number of NAM DNS monitor request/h4 7100k100k
1

Calculated as 5000 monitor executions (maximum for a single environment) run once every minute (maximum frequency).

2

These are HTTP monitors on private locations with any of: pre- or post-execution scripts, OAuth2 authorization, Kerberos authentication.

3

For NAM monitors using ICMP request type, capacity is related to number of ICMP echo requests (packets) that are being sent during monitors execution. As this number of packets-to-be-sent may significantly vary among defined monitors, using the number of monitor executions as a capacity limit would be inaccurate.

4

For NAM monitors using TCP and DNS request types, capacity is related to the number of network connections (requests) that are being sent during monitors execution. As this number of requests may significantly vary among defined monitors, using the number of monitor executions as a capacity limit would be inaccurate.

5

During load tests that helped to establish capacity limits, NAM ICMP monitors were exclusively scheduled on location; monitors had the following characteristic. Actual capacity may be different for other environments (for example, those where monitored targets respond slower or are failing to provide a response within timeout limit or other type of monitors are executed at the same time). Monitors were using default settings (including default timeouts settings and single packet per-request) and were scheduled every 1 minute. There were multiple target hosts used during tests; all of them were responding properly with average RTT around 200ms.

6

During load tests that helped to establish capacity limits, NAM TCP monitors were exclusively scheduled on location; monitors had the following characteristic. Actual capacity may be different for other environments (for example, those where monitored targets respond slower or are failing to provide a response within timeout limit or other type of monitors are executed at the same time). Monitors were using default settings (including default timeouts settings) and were scheduled every 1 minute. There were multiple target hosts and ports used during tests; all of them were responding properly with average TCP connection time around 200ms.

7

During load tests that helped to establish capacity limits, NAM DNS monitors were exclusively scheduled on location; monitors had the following characteristic. Actual capacity may be different for other environments (for example, those where monitored targets respond slower or are failing to provide a response within timeout limit or other type of monitors are executed at the same time). Please note that DNS server used during resolution should be able to handle incoming requests and may not consider the incoming traffic as a subject to throttling or rejection (for example, due to detection as bot-originated). Monitors were using default settings (including default timeouts settings and UDP as a transport) and were scheduled every 1 minute. There were multiple resolution targets used during tests; all of them were resolved properly with average DNS resolution time around 10ms. Publicly available DNS servers were used: Google (8.8.8.8 and 8.8.4.4) and Cloudflare (1.1.1.1 and 1.1.1.2)

Storage and file system permissions

The table below shows the default installation locations (Linux and Windows) of various ActiveGate directories and the minimum size requirements. This information is compiled from details in ActiveGate directories.

Installation parameter

Default path

Min. size

Notes

<INSTALL>

  • /opt/dynatrace/
  • %PROGRAMFILES%\dynatrace

600 MB

For executable files, libraries, and related files

  • 300 MB for ActiveGate
  • 270 MB for Private Synthetic files

<LOGS>

  • /var/log/dynatrace
  • %PROGRAMDATA%\dynatrace

1.7 GB

  • 500 MB for ActiveGate logs
  • 1 GB for Private Synthetic logs
  • 200 MB for autoupdater logs

<CONFIG>

  • /var/lib/dynatrace
  • %PROGRAMDATA%\dynatrace

1 MB

<TEMP>

  • /var/tmp/dynatrace
  • %PROGRAMDATA%\dynatrace

21 GB1

  • 1 GB for ActiveGate temporary files (without cached OneAgent installers and container images)
  • 20 GB for Private Synthetic temporary files (including execution logs, cache, and screenshots)
1

For an XS ActiveGate—more space is required for execution logs on larger ActiveGates.

Permissions for /tmp

Synthetic-enabled ActiveGate requires write access to the /tmp directory during runtime. Its dependencies, including xvfb, utilize /tmp for storing temporary files and runtime data. Lack of write permissions to this directory may result in unexpected failures or degraded functionality. Ensure that the host environment provides sufficient access rights and available space in /tmp to support these operations reliably.

Related tags
Digital Experience