Activate Application Security
To get started with Dynatrace Application Security, follow the instructions below.
Prerequisites
-
OneAgent version 1.239+
-
Any supported version of Dynatrace. Review the Release notes for currently supported versions.
- Your Dynatrace Managed cluster needs to be connected to Mission Control.
Supported technologies
Activate Application Security
Dynatrace Application Security is licensed based on the consumption of GiB-hours if you're using the Dynatrace Platform Subscription (DPS) licensing model, or Application Security units (ASUs) if you're using the Dynatrace classic licensing. If you’re already a Dynatrace customer and you want to activate Application Security, contact a Dynatrace product expert via live chat. Our DevOps team will evaluate your environment and then activate Application Security.
Assign permissions
You need to assign the Manage security problems permission to user groups that will be allowed to view and manage
- Vulnerabilities, if you enable Dynatrace Runtime Vulnerability Analytics
- Attacks, if you enable Dynatrace Runtime Application Protection
For details, see Environment permissions and Management zone permissions.
Fine-tune permissions optional
Dynatrace version 1.268+
By default, once you enable the Manage security problems permission, users can both view and manage vulnerabilities. To restrict the access level to view-only for specific users, so they can view vulnerabilities but not manage them (cannot change their status), you have two options:
Restrict access to an existing group
To restrict the access of an existing user group at the environment or management zone level
Create a new group with restricted access
To create a new user group with restricted access at the environment or management zone level
- Create a group for which you want to provide restricted access.
- Add the users you want to this group. For details, see Assign a user to groups.