This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Looking to upgrade from Dynatrace Managed to SaaS? See how

"Environment token management tokens" vs "Cluster tokens"

Go to solution
waikeat_chan
Pro

‎07 Mar 2021 05:57 PM - last edited on ‎10 Mar 2021 06:59 AM by Community Team

Still don't understand much after reading documentation.

What is/are the difference between them?

 

Best Regards,

Wai Keat

0 Kudos
Reply
6 REPLIES 6

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru

‎08 Mar 2021 05:50 AM - last edited on ‎19 Mar 2025 11:45 AM by Community Team

Hello @waikeat_chan 

Environment API tokens are specific to a particular environment, whereas, the cluster API tokens manage the cluster even containing more than one environment especially in the case of Dynatrace Managed.

Cluster API v1

BabarQayyum_0-1615182382643.png

 

Regards,

Babar

0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Inactive

‎10 Mar 2021 09:26 AM - last edited on ‎19 Mar 2025 11:46 AM by Community Team

Thank you very much for your post! Indeed we need to extend and update our documentation page:

Cluster API v1

 

In particular:

  • Environment token management tokens - is the token to authenticate with Cluster API v2 /environments/{id}/tokenManagementToken endpoint. It allows you to create a token with TokenManagement scope for a specified environment. It can be helpful if you need to start automation of many environments and generate respective tokens. Token is valid 24h due to its power and security impact if it gets leaked.

  • Cluster token - is a token that you use to interact with Cluster API v1 or Cluster API v2 - so cluster context. 
Senior Product Manager,
Dynatrace Managed expert

Go to solution
tarjei
Organizer

‎03 Jan 2023 03:00 PM

Is there a way to get to the same functionality as the Environment token management token, but something that does not invalidate after 24hrs? 

We would like to have a job which runs every 24 hours and syncs all 350 environment tokens for other automation.

0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Inactive
In response to tarjei

‎04 Jan 2023 12:38 PM

Yes, you can override that 24h expiration time by using AP. If you use "0" days it doesn't expire:

curl -X POST "https://cluster-host/api/cluster/v2/tokens" -H "accept: application/json; charset=utf-8" -H "Authorization: Api-Token dt0c01.token" -H "Content-Type: application/json; charset=utf-8" -d "{\"name\":\"my-token-name\",\"expiresIn\":{\"value\":0,\"unit\":\"DAYS\"},\"scopes\":[\"EnvironmentTokenManagement\"]}"
Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply

Go to solution
tarjei
Organizer
In response to Radoslaw_Szulgo

‎04 Jan 2023 12:52 PM

Hi!
Is this documented anywhere? Which access rights does the api user performing this require?

0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Inactive
In response to tarjei

‎04 Jan 2023 04:08 PM - last edited on ‎19 Mar 2025 11:48 AM by Community Team

Yes - see available scopes:

Create new Cluster token

 

Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply
Ask a question

Benefit from other users' help!
li.common.scroll-to.top