cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How encryption in transit is enabled over port 9999 from one agent to activegate

Hi,

We are frequently getting below question from our network team,Please provide configurations/screenshots showing encryption in transit is enabled over port 9999.

I didn't find any relevant documentation to provide them reference.

4 REPLIES 4

Unless you reconfigured the ActiveGate manually, there is https communication with TLS1.2 between ActiveGate and OneAgents.

TEMPEST a.s., Slovakia, Dynatrace Master Partner

@Július L.

They are asking for some sort of reference documentation.i didn't find any.

Is there any way i can show them proof.

Thanks,

Tarun

Look here, focus on ssl-protocols:
https://www.dynatrace.com/support/help/shortlink/sgw-configure#section-comcompuwareapmwebserver-

TEMPEST a.s., Slovakia, Dynatrace Master Partner

also here:

https://www.dynatrace.com/support/help/shortlink/sgw-types#route-oneagent-traffic-to-dynatrace-monit...

Authentication
ActiveGate authenticates OneAgent requests (SSL handshake and environment ID authentication).

And here:

https://www.dynatrace.com/support/help/setup-and-configuration/dynatrace-activegate/configuration/co...

Communication between OneAgents and ActiveGate takes place over an encrypted HTTPS channel. ActiveGate provides an authentication certificate to all connecting clients. While OneAgent instances may ignore the validity of ActiveGate certificates (depending on configuration), connections from browser clients (such as the RUM JavaScript tag) do verify that the hostname listed in the certificate is correct, before they send data.
Senior Product Manager,
Dynatrace Managed expert