10 Apr 2019 01:42 PM
Hello,
can you provide feedback/ documentation regarding the process set that consist the OneAgent and that is running on the host at all times? We see that some processes are on the root user while others on the dtuser, e.g.:
root
14003 1 0 Apr08
? 00:00:36
/opt/dynatrace/oneagent/agent/lib64/oneagentwatchdog
-vm=/opt/dynatrace/oneagent/agent/lib64/oneagentos -logdir
/opt/dynatrace/oneagent/log -ini ../conf/ruxitwatchdog.ini
dtuser 15611 14003
0 Apr08 ? 00:00:59 oneagentplugin
-Dcom.compuware.apm.WatchDogTimeout=900 -Dcom.compuware.apm.WatchDogPort=50003
Thanks,
D
Solved! Go to Solution.
10 Apr 2019 03:02 PM
Hello,
The dtuser created during OneAgent installation is used internally by OneAgent to launch unprivileged processes. For example on the host when deployed under OneAgent, it runs the network and plugin processes
In Managed installations you can see the dtuser on the cluster. This does not run cluster node processes, only self-monitoring agent related processes.
For services installed on Linux as the system services management requires root privileges.
10 Apr 2019 03:06 PM
Thank you Rodrigo,
is there a detailed list of the processes that the dtuser and root user run?
10 Apr 2019 03:31 PM
AFAIK there is no such list, but in the following links you can find where and why dtuser or root permissions are needed:
https://www.dynatrace.com/support/help/technology-support/operating-systems/linux/installation/install-oneagent-on-linux/
https://www.dynatrace.com/support/help/technology-support/operating-systems/linux/installation/permission-requirements-for-oneagent-installation-and-operation-on-linux/
11 Apr 2019 07:02 PM
It also depends if you have installed the agent with non root priviledges or not (default is to use root). If you are using the nonroot mode, all processes run as the nonprivileged user and are using Linux capabilities system to get necessary elevated priviledges when required.