KB 229 (Dynatrace): PowerConnect App permissions
|
Category: Information |
Priority: Normal |
|---|---|
|
Platform: Dynatrace |
Version: 3 from 05.12.2025 |
Description
The SaaS app of PowerConnect for Dynatrace needs some special permissions for any user that wants to use the app.
You can create a new policy and name it “PowerConnect App Policy” and use the following statement to guarantee all of the permissions:
ALLOW storage:logs:read, storage:metrics:read, storage:buckets:read, document:documents:read, document:documents:write, document:documents:admin, document:documents:delete, document:trash.documents:delete, document:direct-shares:read, document:direct-shares:write, document:environment-shares:read, document:environment-shares:write, state:user-app-states:read, state:user-app-states:write, storage:bucket-definitions:read, storage:bucket-definitions:write, storage:bucket-definitions:delete, openpipeline:configurations:read, openpipeline:configurations:write, environment-api:credentials:write, environment-api:credentials:read, settings:objects:read, settings:objects:write;
Make sure that the following permissions are added to the user who is going to use the PowerConnect App:
-
storage:logs:read
-
storage:metrics:read
-
storage:buckets:read
-
document:documents:read
-
document:documents:write
-
document:documents:admin
-
document:documents:delete
-
document:trash.documents:delete
-
document:direct-shares:read
-
document:direct-shares:write
-
document:environment-shares:read
-
document:environment-shares:write
-
state:user-app-states:read
-
state:user-app-states:write
-
storage:bucket-definitions:read
-
storage:bucket-definitions:write
-
storage:bucket-definitions:delete
-
openpipeline:configurations:read
-
openpipeline:configurations:write
-
environment-api:credentials:write
-
environment-api:credentials:read
-
settings:objects:read
-
settings:objects:write