Dynatrace.com Homelink
Free trial

Customize ActiveGate installation

Linux

Command line parameters can be used with the installer as follows:

Dynatrace-Security-Gateway-Linux-<version>.sh [<parameter1>=<value2>] [<parameter2>=<value2>] ...

No spaces

Spaces between the parameter name and parameter value aren't allowed.

Parameter Meaning
PROXY=<proxy_address>:<proxy_port> Proxy
USER=<user> Runs service as a specified user. For versions earlier than 1.155, the user must exist in the system. For versions 1.155+, the installer creates the user if the user doesn't exist in the system and this user doesn't require root rights. If the parameter is not specified, the installer creates user dtuserag to run the ActiveGate service. However, you can use USER=root to force the ActiveGate service to run as root.
INSTALL=<folder> Stores installation files in the specified folder. The default value for this parameter (if not specified) is /opt/dynatrace. Not permitted during upgrade.
LOG=<folder> Stores log files in the specified folder. The default value for this parameter (if not specified) is /var/log/dynatrace. Not permitted during upgrade.
CONFIG=<folder> Stores configuration files in the specified folder. The default value for this parameter (if not specified) is /var/lib/dynatrace. Not permitted during upgrade.
TEMP=<folder> Indicates the temporary directory to be used by ActiveGate. The default value for this parameter (if not specified) is /var/tmp/dynatrace. Not permitted during upgrade.
--ca-certificate-file=<path> Absolute path to the location of the certificate to be used when ActiveGate connects to the Dynatrace server. See Specifying CA certificate during ActiveGate installation.
--ca-certificate-password-file=<path> Absolute path to the location of the file containing the certificate password. See Specifying CA certificate during ActiveGate installation.

Mount points

During the install process, ActiveGate creates a number of directories. If you specified the path in the INSTALL and CONFIG parameters, ActiveGate will create its directories inside that path. Do not create mount points to the installer-created directories. You can only mount the default directories or the directories you have specified.

For example, suppose you have provided the following INSTALL parameter:

INSTALL=/opt/MyActiveGate

The ActiveGate installer will create a subdirectory gateway in the installation path you have provided:

/opt/MyActiveGate/gateway

As a reuslt:

  • The mount point /opt/MyActiveGate is VALID.
  • The mount point /opt/MyActiveGate/gateway is INVALID.

Windows

Command line parameters can be used with the installer as follows:

Dynatrace-ActiveGate-Windows-x86-<version>.exe [<parameter1>=<value2>] [<parameter2>=<value2>] ...

Parameter Meaning
CA_CERTIFICATE_FILE=<path> Absolute path to the location of the certificate to be used when ActiveGate connects to the Dynatrace server.
See Specifying CA certificate during ActiveGate installation
CA_CERTIFICATE_PASSWORD_FILE=<path> Absolute path to the location of the file containing the certificate password.
See Specifying CA certificate during ActiveGate installation

Specifying CA certificate during ActiveGate installation

You can specify the CA proxy certificate (the certificate to be used when ActiveGate connects to the Dynatrace server) during installation. This enables a connection to be established to the server during installation, allowing the ActiveGate installer to download and install any required additional capabilities.

The password is specified as a file from which the password is read. The certificate file is copied into the ActiveGate directory structure, in the customkeys folder of the ssl folder, in the ActiveGate configuration. The password is extracted from the password file and inserted into the custom.properties file in the ActiveGate configuration. It is then encrypted as soon as the ActiveGate service starts.

Linux command example:

[root@localhost]# Dynatrace-Security-Gateway-Linux-1.75.sh --ca-certificate=/home/fred/myCert.jks  --ca-certificate-password-file=/home/fred/myPwd.txt

Windows command example:

c:\Dynatrace-ActiveGate-Windows-x86-<version>.exe CA_CERTIFICATE_FILE=D:\Users\Fred\myCert.jks CA_CERTIFICATE_PASSWORD_FILE=D:\Users\Fred\myPwd.txt