Get started with Application Security
To get started with Dynatrace Application Security, follow the instructions below.
Prerequisites
- OneAgent version 1.239+
Note: Application Security isn't supported for Dynatrace Managed in offline mode.
Supported technologies
Dynatrace detects third-party vulnerabilities in the following technologies.
| Technology | Minimum OneAgent version |
|---|---|
| Go | 1.245 |
| Java | 1.221 |
| Java runtimes | 1.253 |
| Kubernetes | 1.219 |
| .NET | 1.233 |
| .NET runtimes | 1.255 |
| Node.js | 1.231 |
| Node.js runtimes | 1.253 |
| PHP | 1.231 |
Activate Application Security
Dynatrace Application Security is licensed based on the consumption of Application Security units. If you’re already a Dynatrace customer and you want to activate Application Security, contact a Dynatrace product specialist via in-product chat or speak to your account executive. Our DevOps team will evaluate your environment and then activate Application Security.
Assign permissions
You need to assign Security admin permission to users who will be allowed to view and manage vulnerabilities.
Note: For Managed environments, you need to assign Manage security problems permission instead.
To assign Security admin permission
- In Dynatrace, open the user menu in the upper-right corner of the page and go to Account settings > Identity management > User management.
To add an existing user to the group
- Select Edit for the user you want to add.
- Scroll down to Assign groups to user and select the Security admin group.
- Select Save.
To add a new user to the group
- Select Invite user.
- Enter the required details.
- Scroll down to Assign groups to user and select the Security admin group.
- Select Invite.
For more information on user permissions, see Manage user groups and permissions.
Once you have completed these steps, you can enable Dynatrace Runtime Vulnerability Analytics and/or Dynatrace Runtime Application Protection.