• Home
  • Platform modules
  • Application Security
  • Application Protection
  • Get started with Application Protection

Get started with Application Protection

After setting up Application Security, you can get started with Dynatrace Runtime Application Protection.

Note: For Dynatrace Managed, environments need to be connected to Mission Control.

Set up Application Protection

OneAgent version 1.241

Set up Application Protection to start monitoring attacks and attack-generated code-level vulnerabilities.

Activate

Enable

Configure

Enable OneAgent monitoring

Activate

Dynatrace Application Protection is licensed based on the consumption of Application Security units. Contact a Dynatrace product specialist via in-product chat or speak to your account executive to activate Application Protection. After they activate Application Protection for you, proceed with enabling Application Protection.

Enable

To enable Application Protection globally on your environment

  1. In the Dynatrace menu, go to Settings.

  2. Select Application security > Application Protection > General settings.

  3. Select Enable Runtime Application Protection.

  4. Select Save changes.

Configure

To define the global attack control for all process groups

  1. In the Dynatrace menu, go to Settings and select Application security > Application Protection > General settings.
  2. Select one of the Global attack control modes:
    • Off; incoming attacks NOT detected or blocked. – Monitoring is disabled; no attacks are reported.
    • Monitor; incoming attacks detected only. – Monitoring is enabled; no attacks are blocked.
    • Block; incoming attacks detected and blocked. – Monitoring is enabled; attacks are blocked at runtime.

If you define custom monitoring rules based on certain process groups or vulnerability types, the custom rules override the default monitoring mode, and Application Protection continues to monitor the attacks based on your rules.

  1. Select Save changes.

Enable OneAgent monitoring

  1. In the Dynatrace menu, go to Settings and select Preferences > OneAgent features.
  2. Find Java code-level attack evaluation and enable it.
  3. Select Details and turn on Instrumentation enabled (change needs a process restart).
  4. Select Save changes.
  5. Restart your processes.

Manage attacks

After you enable Application Protection, you can start monitoring attacks and attack-generated code-level vulnerabilities, and you can set up attack-protection rules.