Runtime Application Protection

Dynatrace Runtime Application Protection leverages code-level insights and transaction analysis to detect and block attacks on your applications automatically and in real time.

  • Detection of SQL, JNDI, and command injection attacks
  • Code-level visibility provided by OneAgent
  • Production-ready performance footprint
  • Configurable automatic blocking of detected attacks
  • Protection of web applications and APIs
  • High alert precision with rich context to optimize your team's performance and make every minute count

Runtime Application Protection is licensed based on the consumption of GiB-hours if you're using the Dynatrace Platform Subscription (DPS) licensing model, or Application Security units (ASUs) if you're using the Dynatrace classic licensing.

Get started

Set up Runtime Application Protection to start monitoring attacks.

Contact a Dynatrace product expert via live chat to activate Runtime Application Protection.

To enable Runtime Application Protection globally on your environment

  1. Go to Settings and select Application security > Application Protection > General settings.

  2. Select Enable Runtime Application Protection.

  3. Select Save changes.

To define the global attack control for all process groups

  1. Go to Settings and select Application security > Application Protection > General settings.
  2. Under Define global incoming attack control, select the desired mode per technology:
    • Off; incoming attacks NOT detected or blocked.—Monitoring is disabled; no attacks in the selected technology are reported.
    • Monitor; incoming attacks detected only.—Monitoring is enabled; no attacks in the selected technology are blocked.
    • Block; incoming attacks detected and blocked.—Monitoring is enabled; attacks in the selected technology are blocked at runtime.

If you define custom monitoring rules based on certain process groups or vulnerability types, the custom rules override the global attack control for the selected technology, and Runtime Application Protection continues to monitor the attacks based on your rules.

  1. Select Save changes.
  1. Go to Settings and select Preferences > OneAgent features.
  2. Filter by code-level attack evaluation and enable the feature for the technologies you want to monitor.
  3. Select Details and turn on Instrumentation enabled (change needs a process restart) for the respective technologies.
  4. Select Save changes.
  5. Restart your processes.

What's next

After you set up Runtime Application Protection, you can