Login
    Contents x
    Dynatrace Attacks
    • 15 Oct 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Contents

    Dynatrace Attacks

    • Updated on 15 Oct 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Article summary

    Dynatrace provides advanced monitoring and performance management solutions for cloud environments, infrastructure, applications, and user experiences. Dynatrace Attacks adds real-time attack protection to the Dynatrace Application Security module.

    Integration Method: API

    Tables: Vulnerability Findings, Detection Findings

    Dynatrace Configuration

    To get started with Dynatrace integration with DataBee, first we need to enable the Access Tokens under Settings > Integration > Access Tokens. Click on the Generate new Token button.  

    Make sure to select the scopes below to fetch Attacks & Vulnerability events

    • Read attacks

    • Read audit logs

    • Read entities

    • Read events

    • Read logs

    • Read problems

    • Read Security Problems

    Save the generated token. It will be used later when configuring DataBee.

    For Application Security in Dynatrace to work, Vulnerability Analytics & Application Security must be enabled and configured to monitor the selected hosts and applications. To enable it, navigate to Settings > Application Security > Vulnerability Analytics > General Settings. In the Code-level vulnerability Analytics tab, enable Code-level Vulnerability Analytics > Save Changes

    If required, you can enable Third-party Vulnerability Analytics as well in the same way.

    To enable Application Protection, navigate to Settings > Application Security > Application Protection > General Settings. Select the Enable Runtime Application Protection slider and save changes

    To enable OneAgent features, refer to online documentation found at: https://docs.dynatrace.com/docs/setup-and-configuration/dynatrace-oneagent/oneagent-features#global-configuration

    DataBee Configuration

    While configuring the data source, the <tenant_id> needs to be replaced with the actual value and the API token generated in the earlier steps.

    1. Log on to the DataBee console and navigate to the Data tab and select Data Sources. Click Add New Data Source.

    1. Search for Dynatrace and select the Dynatrace Attacks

    1. Click on API Ingest

    2. Enter the Dynatrace contact information and click Next

    3. In the Configuration panel, enter the following information

      1. Authorization Method: Bearer Token

      2. Token: Paste the token generated earlier

      3. API URLs: Ensure that they are filled as shown below

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Eddy AI, facilitating knowledge discovery through conversational intelligence