Normally you benefit from real user monitoring only after you've installed Dynatrace. The manual approach to setup described here—otherwise known as agentless real user monitoring—should only be used for installations where you aren't able to start deep monitoring, for example because you have no Dynatrace installed on your web server machine.
To enable agentless real user monitoring, follow the steps outlined below.
Before you begin
What you'll need:
Set up agentless real user monitoring
To set up agentless real user monitoring:
- Install a public managed Security Gateway.
- Go to Settings > Public endpoints. In the Security Gateway URL text field, type the URL where your new Security Gateway can be reached. The URL must be publicly accessible and able to accept HTTPS requests.
Note: The public Managed Security Gateway is listening by default to port
9999. If this isn't desired, it's possible to change this port in the Security Gateway configuration file. Alternatively, you can use the port of your choice and then redirect the traffic to port
9999 through the firewall settings.
Make your cluster production ready
Load balance multiple security gateways
If you take this approach, you'll need to provide your load balancer URL in the Security Gateway URL text field, as explained above. Requests that your load balancer forwards to Security Gateways appear as follows:
GET and POST requests for transmitting session information to Dynatrace Managed:
Note: Be sure to configure the load balancer to set the
x-forwarded-for parameter for all forwarded requests. This parameter contains the IP address of the original request. Dynatrace needs this parameter to determine where the request originated from.
Load balancer should terminate SSL as this is very expensive on Security Gateway. For a higher performance and if security constraints allow it, traffic can be forwarded via plain HTTP from load balancer to Security Gateway.
CDN or caching proxy should forward all requests to
Note: If you use the inline JavaSript tag, you don't need the CDN part, as in this case the whole JavaSript code is inserted into your application’s HTML source.
- Go to Settings > Public endpoints.
To simplify updates and configuration changes, you can use the Dynatrace API to get the current JavaSript tag.
To investigate problems that you may encounter with agentless real user monitoring, confirm the following:
- The response of the beacon endpoint starts with
- The application in the Dynatrace web UI shows data.