I've read about the technical difference between these two, however I am more curious about the GENERAL difference between these two when it comes to handling customer (to at least know, if my understanding is correct)

1) Customer that is about to upgrade from Managed or Normal-SaaS to SaaS-Grail:

• a.  For the things that're visible as a SmartScape bubbles,  set the security_context to be the same value as management zone (to ease the migration to Grail later)
• b.  For the things that aren't visible as bubbles (for example, logs ingested via streaming/forwarding from other sources), set the security_context for them before the Migration
• c.  After migration, management zone can still be use, but MOSTLY would be as a mechanism for slice-and-dice data instead of mechanism for data-access-control because policy+security_context would be use for data access control (if customer still want to use Management Zone in data access control, they can do so too because management zone is allowed in the syntax of policy. Just that apparently Dynatrace Team would not advise to do so?)

2) For customer that would straight away onboard to SaaS Grail

• a.  Just use Security Context
• b.  Management Zone is totally optional ('optional' in the sense that, as exactly what I described in point 1c above)
• But to make things easier in future (I don't know, maybe in future Dynatrace would remove this feature altogether...), Management Zone should be avoid for all new customer?

Any comment or correction are welcome, thanks!

Best Regards,

Wai Keat