Manage IAM policies
Use these procedures in the Dynatrace web UI to manage Dynatrace IAM policies.
API alternative
To instead use the API to manage IAM policies, go to:
- Dynatrace SaaS: Dynatrace Account Management API 1.0
- Dynatrace Managed: IAM API is available as part of Cluster API v2
List IAM policies
To list configured IAM policies
Built-in policies
To let you use policies right away, Dynatrace IAM is shipped with built-in global policies.
- On the Policies page, in the Source column, they're all set to
Dynatrace
They're predefined and managed by Dynatrace
- You can apply a built-in policy by assigning it to a group for the whole account or to any environment.
- You can inspect them—select View policy in the Actions column—but you can't edit them
Create a policy
To create a policy
Services
For a complete and up-to-date list of Dynatrace services that support permission management via IAM policies, see IAM service reference.
Edit a policy
To edit an existing policy
Delete a policy
To delete a policy
Copy a policy
To copy an existing policy
Apply a policy to a group
To apply a policy to a group, you need to bind the policy to the group. For details on managing group permissions with IAM, see Manage group permissions with IAM policies.