Monitor all cloud platforms at once

Latest Dynatrace

With the Dynatrace Clouds app Clouds, you can onboard new multicloud environments and monitor their resources. The app allows you to observe those multiple cloud environments and their resources, state, metrics, logs, and health status in a unified view.

Prerequisites

Clouds app shows data that is ingested by the following cloud integrations:

Layout

  • When you open the app without prior monitoring of cloud services, the start page presents you with all three cloud providers. If you select one, you'll be redirected to Settings to set up monitoring.
  • When you open the app with prior monitoring of cloud services, the start page shows you the default view of all services (see below for details).
Configure

Even after initially configuring a cloud service, you can access the same start page with the Configure button in the upper-right corner.

The Clouds app provides a menu bar on the left with built-in quick filters for:

  • Services
    • All services
    • Virtual Machines
    • Databases
    • Storage
    • Functions
    • Queues
    • Kubernetes
    • Network
  • Regions / Location Regions
    • All regions
    • NORAM
    • EMEA
    • APAC
    • LATAM
    • Other

The default view of all services is displayed in a table. To find necessary data, you can filter by these query parameters:

  • Instance name
  • Cloud
  • Service type
  • Environment
  • Region
  • Tags contain
  • Seen in
  • Affected by problem
  • Fetch metrics (available only when Edit Services > Virtual machines/Storage/Functions/Queues quick filter is selected)

Select Search to run the query and return a table of matching resources in the following columns:

  • Problems
  • Name
  • Cloud
  • Environment
  • Region
  • Type
  • First seen
  • Last seen
  • Entity ID

Unified analysis entity details

To access the Unified analysis entity details panel, make sure you're on the Explorer tab of the Clouds app. To display it, select the result provided in the Problems or Name column. Unified analysis entity details provides extensive entity information sorted by the following tabs:

  • Info—Provides information on Tags and Properties on a selected entity.

  • Problems—If there's an indication of a problem in the Problems column of the table, Unified analysis entity details displays the affected component.

  • Ownership—You can add or check a team responsible for this environment's governance.

  • Metrics—Besides displaying the metric charts here, you can open the metrics in Notebooks by selecting More actions > Open in Notebook. To change the timeframe for these entity details, select the clock .

  • Events

  • Logs—If there's a log-related problem, this tab provides recommended queries with corresponding issues.

    Run recommended queries

    You will be charged for viewing each log record via Run recommended queries in the Logs tab. Anything other than that is not additionally charged.

  • SLOs

Integration manager

On the Integration manager tab, you can see, create, delete, and edit cloud integrations that you already have on your tenant.

You can access the tab in two ways:

  • Select the Integration manager tab in the upper-left corner.
  • Select Configure in the upper-right corner and choose either AWS Connections or Azure Connections.

Details

After you pass the token generation stage, you'll see all your connections in the table below the AWS connections or Azure connections section.

To switch between your AWS and Azure connections lists, select the cloud provider in the Choose cloud drop-down menu at the top of the page.

To see and edit the details of a specific connection, select its name in the table. The Properties panel is displayed on the right.

  • To manage your services under a specific connection, select Manage Services in the Properties panel. It'll redirect you to the Settings page, where you can manage your services.

  • Each connection name must be unique within the same cloud connection.

  • If you don't need to update the secret key, you can leave the Secret key field empty in Azure connection details.

  • If you don't need to update the secret access key, you can leave the Secret access key field empty in AWS key-based authentication connection details.

    From Dynatrace version 1.267+, only role-based access can be used. Key-based authorization is no longer available for new credentials. For existing key-based credentials, you can keep using keys indefinitely. We recommend switching to role-based authentication using the dedicated button on the configuration page. Dynatrace automatically checks the configuration to ensure the correct configuration of roles.

    Key-based authentication is allowed only for AWS GovCloud and China partitions.

Connect new instance

To create a new connection, select Add Connect new instance above the connections table.

In the Connect new instance window, complete the fields and then select Save.

Permissions

The following table describes the required permissions.

Permission
Description
app-settings:objects:read
Read app settings objects. Required by Logs tab in entity details panel (Logs onboarding feature).
davis:analyzers:execute
Execute Davis analyzers. Necessary for presenting problems details in Problems tab in entity details panel.
document:documents:read
Read documents. Required by filter presets feature.
document:documents:write
Create and update documents. Required by filter presets feature.
document:documents:delete
Delete documents. Required by filter presets feature.
environment-api:entities:read
Read access to Entity API. Required to check available entity types.
environment-api:entities:write
Write access to Entity API. Required to add and remove custom tags to entities in entity details panel.
environment-api:metrics:read
Read access to metrics API. Necessary for presenting metrics in services table and in entity details panel.
environment-api:slo:read
Read access to SLO API. Required by SLOs tab in entity details panel.
hub:catalog:read
Read Hub catalog. Required by Logs tab in entity details panel (Logs onboarding feature).
settings:objects:write
Write permissions to settings of ownership (settings:schemaIds = builtin:ownership.teams). Not strictly required. Enables additional features in Ownership tab in entity details panel.
settings:objects:read
Read settings of ownership (settings:schemaIds = builtin:ownership.config). Required by Ownership tab in entity details panel.
storage:buckets:read
Base permission to read records from Grail buckets. Required additionally to a table permission.
storage:fieldsets:read
Read masked/sensitive fields.
storage:entities:read
Read records from entities table.
storage:logs:read
Read records from logs table. Necessary for presenting logs in entity details panel.
storage:metrics:read
Read timeseries from the metrics table. Necessary for presenting metrics in services table and in entity details panel.
storage:events:read
Read records from the events table. Necessary for presenting problems in services table and in entity details panel.
unified-analysis:screen-definition:read
Read details screen config. Necessary for displaying entity details panel.
state:user-app-states:read
Read user app state. Necessary for presenting events in Events tab in entity details panel.

Troubleshooting

Error message: "You do not have enough permissions to manage cloud integrations"

Your feedback matters

Please share your feedback about the Clouds app via a dedicated Dynatrace Community thread.