Denis Aptula

Introduction

This document outlines the implementation of Dynatrace in an Azure environment, focusing on configuring advanced monitoring, security posture analysis, and anomaly detection. By integrating Dynatrace with Azure resources, this project enabled real-time visibility into infrastructure performance, user activity, and security events. This report provides a step-by-step guide to the process, including configuring Dynatrace OneAgent, ActiveGate, and tailored alert profiles for effective monitoring.

Set Up Dynatrace in Azure

1. Subscribe to Azure Native Dynatrace Service:
   • Go to the Azure Marketplace.
   • Search for Azure Native Dynatrace Service and click on it.
   • Click Subscribe and follow the instructions to set up your subscription.
   • During configuration, select your Azure subscription and resource group.
   • Complete the setup by following the wizard.
2. Enable Continuous Export in Microsoft Defender for Cloud (formerly Azure Security Center):
   • In Azure, go to Microsoft Defender for Cloud.
   • Navigate to Settings & monitoring or Environment settings.
   • Select Continuous Export and click + Add export.
   • Under Export Target, choose Log Analytics workspace and select the desired Subscription and Workspace.
   • In Export Type, choose Security Alerts and Security Recommendations.
   • Click Save to start exporting data to Log Analytics, enabling Dynatrace to access it.

Set Up Azure Integration in Dynatrace

1. Connect Dynatrace to Azure:
   • In the Dynatrace portal, go to Settings > Cloud and Virtualization > Azure.
   • Click Connect new instance to start the integration.
   • Enter your Application (client) ID, Directory (tenant) ID, and Client Secret from the Azure AD app registration you created.
   • Save and authorize the connection, allowing Dynatrace to access data from Azure Monitor.
2. Verify the Integration:
   • After authorization, verify that your Azure environment, including your new VMs, is visible under Cloud and Virtualization > Azure in Dynatrace.

Deploy Dynatrace OneAgent on Each Workstation (Azure VMs)

Part 1: Download the Dynatrace OneAgent Installer

1. Log into the Dynatrace Portal:
   • Open your web browser and navigate to the Dynatrace portal.
   • Log in with your credentials.
2. Go to the Deploy Dynatrace Section:
   • Once logged in, go to the left-hand menu and select Deploy Dynatrace.
3. Set Up Monitoring:
   • In the Deploy Dynatrace section, click on Set up monitoring.
   • This section provides options for deploying the OneAgent across different environments.
4. Select Deploy Dynatrace OneAgent for Full-Stack Monitoring:
   • Choose Deploy Dynatrace OneAgent to enable full-stack monitoring, which includes monitoring of processes, network traffic, security insights, and system performance.
5. Download the OneAgent Installer:
   • Under the Operating System selection, choose Windows if you are installing on Windows-based Azure VMs.
   • Download the specific OneAgent installer version provided, in this case, Dynatrace-OneAgent-Windows-1.301.54.20241017-161011.

Part 2: Install Dynatrace OneAgent on Each Azure VM

1. Log into Each Azure VM:
   • For each workstation (VM) where you want to install the OneAgent, log into the VM with administrator privileges.