Inject OneAgent code modules into a container during its build process.
This method of application instrumentation has limitations in linking Kubernetes workloads with monitored containers/processes. To achieve proper relationships and linking, consider using automatic application-only injection.
Review the list of supported applications and versions.
Create an access token with PaaS Integration - InstallerDownload scope.
Storage requirements:
For ARM architecture, ensure wget and unzip are installed.
To integrate OneAgent into the application image, follow the steps below.
Sign in to Docker with your Dynatrace environment ID as username and access token as password.
docker login -u <environmentID> -p <accessToken> <environmentURL>
Add the following lines of code to the application image, after the last FROM command:
COPY --from=<environment>/linux/oneagent-codemodules:<technology> / /ENV LD_PRELOAD /opt/dynatrace/oneagent/agent/lib64/liboneagentproc.so
<technology>—OneAgent code module required for your application. Available options are all, java, apache, nginx, nodejs, dotnet, php, go, and sdk. You can specify several code modules, separated by hyphen (-), for example java-go. Including specific technology-support options, rather than support for all technology options, results in a smaller OneAgent package.Dynatrace OneAgent supports Alpine Linux based environments.
COPY --from=<ACTIVEGATE-ADDRESS>/linux/oneagent-codemodules-musl:<TECHNOLOGY> / /ENV LD_PRELOAD /opt/dynatrace/oneagent/agent/lib64/liboneagentproc.so
Valid options here are: all, dotnet, php, java, apache, nginx, nodejs, and go.
Build your application image.
Build the Docker image from your Dockerfile to use it in your Kubernetes environment.
docker build -t yourapp .
You can monitor your application containers with a different Dynatrace environment.
For OneAgent version 1.139+, if you have an existing application image where you've already added the OneAgent code modules for a specific Dynatrace environment, you can have the OneAgent report to another Dynatrace environment without rebuilding your application image.
For this, you need to make a call to the REST endpoint of your second Dynatrace environment. Don't forget to adapt the respective placeholders <environmentID> and <token>.
curl "https://<environmentID>.live.dynatrace.com/api/v1/deployment/installer/agent/connectioninfo?Api-Token=<token>"
In return, you get a JSON object that covers the required information that needs to be passed as an environment variable to the application container.
Make sure you set the environment variables of the application container as described below:
DT_TENANT: equals tenantUUIDDT_TENANTTOKEN: equals tenantTokenDT_CONNECTION_POINT: semi-colon separated list of communicationEndpointsYou can configure network zones as an environment variable:
DT_NETWORK_ZONE: equals your.network.zoneSee network zones for more information.
optional Configure a proxy address
In case you run an environment with proxy, you need to set the DT_PROXY environment variable in the application container to pass the proxy credentials to OneAgent.
For Alpine Linux-based containers, you might need to update the wget shipped with the Alpine image to allow for proxy authentication for the download of OneAgent.
Define variables with optional default values using ARG instructions, as shown below.
ARG DT_API_URL="https://<environmentID>.live.dynatrace.com/api"ARG DT_PAAS_TOKEN="<token>"ARG DT_ONEAGENT_OPTIONS="flavor=default&include=<technology1>&include=<technology2>"ENV DT_HOME="/opt/dynatrace/oneagent"
BuildConfig. Replace <environmentID> with your Dynatrace environment ID. If you’re using Dynatrace Managed, you need to provide your Dynatrace Server URL (https://<YourDynatraceServerURL>/e/<environmentID>/api). Replace <token> with the PaaS token mentioned above.include parameters. Valid options for flavor=default are all, java, apache, nginx, nodejs, dotnet, php, go, and sdk. Including specific technology-support options, rather than support for all technology options, results in a smaller OneAgent package.OneAgent supports the flavor musl for Alpine Linux based environments. Valid options for flavor=musl are all, java, apache, nginx, and nodejs.
Add the following commands to your current Dockerfile to integrate OneAgent and activate instrumentation of your application.
ARG DT_API_URL="https://<environmentID>.live.dynatrace.com/api"ARG DT_API_TOKEN="<token>"ARG DT_ONEAGENT_OPTIONS="flavor=default&include=<technology1>&include=<technology2>"ENV DT_HOME="/opt/dynatrace/oneagent"RUN mkdir -p "$DT_HOME" && \wget -O "$DT_HOME/oneagent.zip" "$DT_API_URL/v1/deployment/installer/agent/unix/paas/latest?Api-Token=$DT_API_TOKEN&$DT_ONEAGENT_OPTIONS" && \unzip -d "$DT_HOME" "$DT_HOME/oneagent.zip" && \rm "$DT_HOME/oneagent.zip"ENV LD_PRELOAD="/opt/dynatrace/oneagent/agent/lib64/liboneagentproc.so"
The commands above that use wget and unzip might fail if they aren't provided by the base image.
Build your application image.
In an OpenShift context the above Dockerfile could be used for binary builds as follows:
oc new-build --binary --strategy=docker --allow-missing-images yourappoc patch bc/yourapp --type=json --patch='[{"op":"remove","path":"/spec/strategy/dockerStrategy/from"}]'oc start-build yourapp --from-dir=. --follow
You can monitor your application containers with a different Dynatrace environment.
For OneAgent version 1.139+, if you have an existing application image where you've already added the OneAgent code modules for a specific Dynatrace environment, you can have the OneAgent report to another Dynatrace environment without rebuilding your application image.
For this, you need to make a call to the REST endpoint of your second Dynatrace environment. Don't forget to adapt the respective placeholders <environmentID> and <token>.
curl "https://<environmentID>.live.dynatrace.com/api/v1/deployment/installer/agent/connectioninfo?Api-Token=<token>"
In return, you get a JSON object that covers the required information that needs to be passed as an environment variable to the application container.
Make sure you set the environment variables of the application container as described below:
DT_TENANT: equals tenantUUIDDT_TENANTTOKEN: equals tenantTokenDT_CONNECTION_POINT: semi-colon separated list of communicationEndpointsYou can configure network zones as an environment variable:
DT_NETWORK_ZONE: equals your.network.zoneSee network zones for more information.
optional Configure a proxy address
In case you run an environment with proxy, you need to set the DT_PROXY environment variable in the application container to pass the proxy credentials to OneAgent.
For Alpine Linux-based containers, you might need to update the wget shipped with the Alpine image to allow for proxy authentication for the download of OneAgent.
Set the following build-time variables:
$DT_API_URL (The API URL of your Dynatrace environment)$DT_PAAS_TOKEN (The PaaS token to download the code modules)$DT_ONEAGENT_TECHNOLOGY (The module that is downloaded, for example php)Add the following commands to the Dockerfile:
RUN mkdir -p /opt/dynatrace/oneagent && ARCHIVE=$(mktemp) && wget -O $ARCHIVE "$DT_API_URL/v1/deployment/installer/agent/unix/paas/latest?Api-Token=$DT_PAAS_TOKEN&flavor=default&arch=arm&include=$DT_ONEAGENT_TECHNOLOGY" && unzip -o -d /opt/dynatrace/oneagent $ARCHIVE && rm -f $ARCHIVEENV LD_PRELOAD /opt/dynatrace/oneagent/agent/lib64/liboneagentproc.so
You need to manually update OneAgent by rebuilding the container image every time a new version of a code module is needed.
To uninstall OneAgent from application-only monitoring
Remove the two lines of code from the application image.
COPY --from=<ACTIVEGATE-ADDRESS>/linux/oneagent-codemodules:<TECHNOLOGY> / /ENV LD_PRELOAD /opt/dynatrace/oneagent/agent/lib64/liboneagentproc.so
Rebuild the application image.
docker build -t yourapp .
Remove the following commands from your Dockerfile.
ARG DT_API_URL="https://<environmentID>.live.dynatrace.com/api"ARG DT_API_TOKEN="<token>"ARG DT_ONEAGENT_OPTIONS="flavor=default&include=<technology1>&include=<technology2>"ENV DT_HOME="/opt/dynatrace/oneagent"RUN mkdir -p "$DT_HOME" && \wget -O "$DT_HOME/oneagent.zip" "$DT_API_URL/v1/deployment/installer/agent/unix/paas/latest?Api-Token=$DT_API_TOKEN&$DT_ONEAGENT_OPTIONS" && \unzip -d "$DT_HOME" "$DT_HOME/oneagent.zip" && \rm "$DT_HOME/oneagent.zip"ENTRYPOINT [ "/opt/dynatrace/oneagent/dynatrace-agent64.sh" ]CMD [ "executable", "param1", "param2" ] # the command of your application, for example, Java
Rebuild the application image.
docker build -t yourapp .