Monday Aug 30, 2021

Dynatrace: Getting started

Develop - Agile
Deploy - Continuous
Run - Microservices and Containers
Measure - User experience
Compute - Cloud

Time to market is crucial in agile environments today. Dynatrace automates the monitoring deploying.

Dynatrace features

Automated deployment
Automated discovery & monitoring
Automated dependency mapping
Automated baseling
Automated problem detection
Automated root cause analysis
Automatically adapts to changes
Automate the feedback loop across all teams

Software Life Cycle

Upgrades
Deployment
Discovery & mapping
Problem identification
Business impact
Root cause
Remediation

Monitoring based on Agent

Data centers
Hosts
Processes
Services
Applications

Integrations

ServiceNow
Splunk
Slack

Delivery Options

Dynatrace SaaS, OneAgent uses a Proxy Server ActiveGate for network security
Dynatrace Managed - on premises

ActiveGateway receives information from OneAgent installed on Hosts, ActiveGate is the only component that requires full internet access

Managed Environment require embedded ActiveGates for

VMware
Synthetic
RUM integration

Can be integrated with

VMware monitoring
Amazon Web Services
PasS: Cloud Foundry, IBM Bluemix, Azure WebApps
Agentless RUM (requires js in your html)
Mobile monitoring
Synthetic Checks

OneAgent

OneAgent per host

Real User Monitoring

Web Applications, requires a js in your html pages
Mobile Applications, require to include the monitoring library (response times)

Server-side Monitoring

Web services
Web containers
Database requests
Custom services

Network, process and hosts monitoring

Host health metrics
Network traffic, interface errors, TCP quality
Logfiles
Databases

Cloud, Virtual machine, and container monitoring

Private, public, and hybrid cloud
All virtualized components
Container aware

Dynatrace GUI (webapp and mobile app)

You visualize a period of time that apply to the dashboard vis

Filters allow you to select zones

Capabilities are organized into categories in the left side pane

Smartscape Topology

Visualizes relations (nodes in comunication) in a graph, lines indicate activity in the last 72 hrs.
Solid lines represent active relationships between processes, services, applications and hosts.
Dotted lines indicate no activity has ocurred in two or more hours.
After 72 hours of inactivity lines are removed from smartscape graph.

Help in architecting systems Alf

Creates a process topology

Applications does not connect one to another, services do

Logos or symbols used in each node represents the underlying node type.

Dynatrace Updates

A new release every two weeks that is automatically deployed.

Dynatrace Security

Best practices

Firewalls
Regular security updates

Additional measures

Security scans
Vulnerability assessments

Dynatrace SaaS is hosted on AWS, certified for

ISO 27001
PCI-DSS Level 1
SOC 1/SSAE-16

Penetration testing & Security reviews

OneAgent send data to SaaS over https, no listening sockets
Data is encrypted at rest
Physicas access controls
Hypervisor protection
Secure decommisioning
MFA employee access

FedRAMP Authorized
SOC 2 Type II certified
GDPR (General Data Protection Regulation from European Union) compliant
CAIQ report available

GDPR

Right to be informed	Users may want to understand what data is collected about them	Dynatrace products have query functions to support
Right to rectification/objection	Users may want to change address information or fix incorrect data	This is not relevant in APM because RUM sessions are read-only transaction recordings whose data won't be used for any other purpose
Right for erasure	Users may want their data to be deleted	Session data has a relatively low retention period, and GDPR gives data processors 30 days to complete each customer request. Dynatrace SaaS data retention is 35 days.
Right to data portability	Users may want to change platfoms and take their data with them	This is not relevat in APM because RUM sessions are the property of the data controller. Users have no need to export their click paths into other apps.
Right ot restrict processing	Users may want to restrict the tracking and processing of their information	This is supported by the "do not track" browser option and the requirment that users accept RUM tracking before javascript is injected into their browsers to enable RUM
Right to data protection	Users may want to protect their personal information	All dynatrace SaaS deployments encrypt all customer data by default, fulfilling GDPR requirements

Dynatrace Architecture

Dynatrace node

A node consist of the following:

Public security gateway for agent security
HA Agent proxy that acts as load balancer
Cassandra no sql services cluster
Analytics server cluster
ElasticSearch cluster for WebUI and control services

You can provision serveral nodes.

A managed cluster run on-premises and consist of several nodes

A cluster management console is generated once you have installed the dynatrace server

All managed clusters communicate with Dynatrace Mission Control for maintenance and licensing issues.

Components

OneAgent: Collector of data and metrics, compress and encrypts data for transmission to Dynatrace Server or via an ActiveGate
ActiveGate: Works as proxy between the OneAgents and the Dynatrace Server. It is the only commponent than need internet access.
Can be configured as host for memory dumps.
Can act as private synthetic location for internal monitoring.
ActiveGate plugins: Used for monitoring technology where OneAgent can not be installed as PaaS, net devices or cloud technologies.
ESXi hosts and VMware platform can be polled for metrics (CPU,ram, storage)
Dynatrace Server: Collects data received from OneAgents or ActiveGates
Cluster active gate is for maanaged only, and Environment active gates for Managed and SaaS

ActiveGate

Is a best practice to use when you route OneAgent traffic to Dynatrace, monitor cloud environments or monitor remote technologies with extensions, monitor mainframe environments.

Synthetic monitoring requires more computing power.

ActiveGate listens on port 9999 and comunicates to Dynatrace server who listens on port 443

Requirements, at least
2 GB disk space
2-4 GB ram
1 dual core processor