FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How encryption in transit is enabled over port 9999 from one agent to activegate

Go to solution
tarun_kumar_aga
Organizer

‎12 Feb 2021 07:22 AM

Hi,

We are frequently getting below question from our network team,Please provide configurations/screenshots showing encryption in transit is enabled over port 9999.

I didn't find any relevant documentation to provide them reference.

Labels:
0 Kudos
Reply
4 REPLIES 4

Go to solution
Julius_Loman
DynaMight Legend
DynaMight Legend

‎12 Feb 2021 07:28 AM

Unless you reconfigured the ActiveGate manually, there is https communication with TLS1.2 between ActiveGate and OneAgents.

Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
0 Kudos
Reply

Go to solution
tarun_kumar_aga
Organizer
In response to Julius_Loman

‎12 Feb 2021 07:36 AM

@Július L.

They are asking for some sort of reference documentation.i didn't find any.

Is there any way i can show them proof.

Thanks,

Tarun

0 Kudos
Reply

Go to solution
Julius_Loman
DynaMight Legend
DynaMight Legend
In response to tarun_kumar_aga

‎12 Feb 2021 07:45 AM

Look here, focus on ssl-protocols:
https://www.dynatrace.com/support/help/shortlink/sgw-configure#section-comcompuwareapmwebserver-

Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru
In response to tarun_kumar_aga

‎12 Feb 2021 08:58 AM

also here:

https://www.dynatrace.com/support/help/shortlink/sgw-types#route-oneagent-traffic-to-dynatrace-monit...

Authentication
ActiveGate authenticates OneAgent requests (SSL handshake and environment ID authentication).

And here:

https://www.dynatrace.com/support/help/setup-and-configuration/dynatrace-activegate/configuration/co...

Communication between OneAgents and ActiveGate takes place over an encrypted HTTPS channel. ActiveGate provides an authentication certificate to all connecting clients. While OneAgent instances may ignore the validity of ActiveGate certificates (depending on configuration), connections from browser clients (such as the RUM JavaScript tag) do verify that the hostname listed in the certificate is correct, before they send data.
Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply
Ask a question