https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-SaaS-AWS-using-EdgeConnect-in-corporate-network-over/m-p/290851#M38144 <P>For those of you who are interested: we opened a ticket with Dynatrace and were told that EdgeConnect via AWS Privatelink is not currently supported.</P><P>No ETA available yet.</P> Thu, 04 Dec 2025 14:49:30 GMT AndrasKovacs 2025-12-04T14:49:30Z https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-SaaS-AWS-using-EdgeConnect-in-corporate-network-over/m-p/290388#M38093 <P>Hello together,</P><P>we have a Dynatrace SaaS tenant in AWS and our corporate network is connected over a VPC endpoint/private link to the Dynatrace SaaS Service endpoint.</P><P>We now want to place an EdgeConnect in our corporate network and connect over that private link.</P><P>So we reach our tenant xyz12345.apps.dynatrace.com over the private link instead of the Internet.</P><P>The EdgeConnect should run in a container on an AWS EC2 instance with Redhad 9 and podman installed.</P><P>&nbsp;</P><P>But the container always exits when trying to connect to the Dynatrace tenant with "TLS&nbsp;error - hostname mismatch"</P><P>&nbsp;</P><P>very simple&nbsp;edgeConnect.yaml:</P><P>name: my-edgeconnect<BR />api_endpoint_host: xyz12345.apps.dynatrace.com<BR />log_level: debug<BR />oauth:<BR />&nbsp; client_id: dt0s10.xxxxxxxxx<BR />&nbsp; client_secret: dt0s10.xxxxxxxxxxxxxxxx<BR />&nbsp; resource: urn:dtenvironment:xyz12345<BR />&nbsp; endpoint: sso.dynatrace.com/sso/oauth2/token</P><P><BR />error when trying to start the EdgeConnect container:</P><P>2025-11-27T08:59:36.260710854+0000 info [edge_connect::dt_oauth] OAuth 2.0 Client Credentials flow succeeded. Token with scope app-engine:edge-connects:connect expires in 300s<BR />2025-11-27T08:59:36.270188903+0000 info [edge_connect::websocket::connection] Connection 1: Opening connection to wss://xyz12345.apps.dynatrace.com/platform/app-engine/edge-connect/v1/connect.<BR />2025-11-27T08:59:36.365668392+0000 info [edge_connect::websocket::manager] Beginning shutdown (initial connection attempt failed)<BR />2025-11-27T08:59:36.365704289+0000 error [edge_connect] Exiting due to error: Initial connection attempt failed: Error establishing connection: TLS error: native-tls error: error:0A000086:SSL routines:tls_post_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1889: (hostname mismatch)</P><P><BR />I assume, that it depends on the certificate I get when connecting to Dynatrace over the private link.<BR />Here the certificate for xyz12345.apps.dynatrace.com includes "*.live.dynatrace.com" which is different from the certificate when connecting over the Internet.</P><P><BR />Server certificate<BR />subject=C=US, ST=Massachusetts, L=Waltham, O=Dynatrace LLC, CN=*.live.dynatrace.com<BR />issuer=C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1</P><P>&nbsp;</P><P>(Connecting an EdgeConnect to our SaaS tenant directly over the Internet works without problems, but we need it in corporate network over private link)</P><P>&nbsp;</P><P>Does somebody managed to connect EdgeConnect over an AWS private link to Dynatrace SaaS?</P> Thu, 27 Nov 2025 11:38:49 GMT https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-SaaS-AWS-using-EdgeConnect-in-corporate-network-over/m-p/290388#M38093 mweber5 2025-11-27T11:38:49Z https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-SaaS-AWS-using-EdgeConnect-in-corporate-network-over/m-p/290851#M38144 <P>For those of you who are interested: we opened a ticket with Dynatrace and were told that EdgeConnect via AWS Privatelink is not currently supported.</P><P>No ETA available yet.</P> Thu, 04 Dec 2025 14:49:30 GMT https://community.dynatrace.com/t5/Open-Q-A/Dynatrace-SaaS-AWS-using-EdgeConnect-in-corporate-network-over/m-p/290851#M38144 AndrasKovacs 2025-12-04T14:49:30Z