This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Process Group Command line arguments

Pranav1
Participant

‎28 Feb 2023 02:18 PM

How can I turnoff these command line arguments ,since these contains some sensitive data and can all users are able to view this .

Is there a way to mask them or not pushing them into dynatrace itself ??

Thanks 

Pranav

0 Kudos
Reply
3 REPLIES 3

AurelienGravier
DynaMight Champion
DynaMight Champion

‎28 Feb 2023 05:52 PM

Hello @Pranav1 ,

 

I think it's not possible but perhaps with IAM policies however I'm not sure that you will have the fine-grained schema :

https://www.dynatrace.com/support/help/shortlink/iam-getting-started

https://www.dynatrace.com/support/help/shortlink/iam-getting-started#example-2-allow-access-to-a-par...

Or, you could define management zones without visibility on process group, only with visibility on services and webapplications.

Regards

 

Observability consultant - Dynatrace Associate/Pro/Services certified
Reply

Harvey_Zhang
Organizer
In response to AurelienGravier

‎05 Sep 2024 10:26 PM

i am going to take the idea Aurelien advised that create a policy to allow access Service & WebApp, Host only and exclude Process level acess. But this doesn't solve our concern that command argument do contains sensitive info that is security concern. Command line argument masking didn't have process so far. 

 

https://community.dynatrace.com/t5/Product-ideas/Mask-any-query-parameter-or-command-line-argument-c...

0 Kudos
Reply

Julius_Loman
DynaMight Legend
DynaMight Legend
In response to Harvey_Zhang

‎06 Sep 2024 08:48 AM

Exposing tokens or other sensitive information as process command line arguments is generally a bad idea in the first place. Can't you just fix it in your application?

Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
0 Kudos
Reply
Ask a question

Featured Posts