Solved: Re: Create security context

erh_inetum · ‎07 Nov 2025

Hi,

I have a question related to security context.

We created several MZs. And we would like to create security context to provide access to the same objects that were defined in the MZs.

So, to define that security context is it enough to establish as security context the same name that the MZ?

Ex.:

ALLOW storage:logs:read WHERE storage:dt.security_context = "mySC"

I've reviewed several times this documentation but it carries on not clear for me.

Thanks in advance.

Regards,

Elena.

DanielS · ‎07 Nov 2025

Hi @erh_inetum yes, by default, Grail uses the management zones to set the dt.security_context on most entities. But for logs or bizevents you can do this using OpenPipeline or security context menu for logs.

Dynatrace Certified Professional @ www.dosbyte.com

erh_inetum · ‎11 Nov 2025

Hi Daniel,

Thank you so much for your answer.

So I can define as a security context one of the MZ, right? I mean, if I have a MZ called "PRO", I can use this name and this entity as security context, right?

Thanks again.

Regards,

Elena.

DanielS · ‎11 Nov 2025

Yes, exactly, try it and let me know if you need more help.

Dynatrace Certified Professional @ www.dosbyte.com

PierreGutierrez · ‎16 Nov 2025

Hi @erh_inetum
To supplement the answer of @DanielS 💪
Currently Dynatrace configure all entities in the securiy_context the same value that it's ManagementZone
Settings/Topology model / Grail security context for monitored entities

Example: Azure

So, if you search about some of that entities:
Example :

dt.entity.azure_event_hub
You will find a information of your MZ in the Security_context.

I hope its helpful 💪

Pierre Gutierrez - LATAM ACE Consultant - Loving Cats! Loving Technology !