01 Apr 2022
10:47 AM
- last edited on
04 Apr 2022
08:44 AM
by
MaciejNeumann
Can we create a new role for the users ,with permission only to create maintenance window?
Solved! Go to Solution.
01 Apr 2022 11:55 AM
Hello!
The way to go would be accessing the policy management option and creating an IAM policy that only grants permission to Maintenance Window creation, something like:
ALLOW settings:objects:read, settings:schemas:read, settings:objects:write WHERE settings:schemaId = "builtin:alerting.maintenance-window";
Then creating a group with that policy and the environment access permission and assigning any user that you only want to let create maintenance windows to that group.
More info if you follow this docs: https://www.dynatrace.com/support/help/how-to-use-dynatrace/user-management-and-sso/manage-groups-an...
Regards,
Álvaro
02 Apr 2025 02:02 PM
Can this be limited to items with that users management zone? Ie we have a large deployment and I want app1 support team to be able to create maintenance windows that only affect app1? same for app 2 support users with app 2.
I don't want app1 support to be able to affect app2.