KB 229 - PowerConnect App permissions on Dynatrace
KB 229 (Dynatrace): PowerConnect App permissions
Category: Information | Priority: Normal |
---|---|
Platform: Dynatrace | Version: 2 from 14.07.2025 |
Description
The SaaS app of PowerConnect for Dynatrace needs some special permissions for any user that wants to use the app.
You can create a new policy and name it “PowerConnect App Policy” and use the following statement to guarantee all of the permissions:
ALLOW storage:logs:read, storage:metrics:read, storage:buckets:read, document:documents:read, document:documents:write, document:documents:admin, document:documents:delete, document:trash.documents:delete, document:direct-shares:read, document:direct-shares:write, document:environment-shares:read, document:environment-shares:write, state:user-app-states:read, state:user-app-states:write, storage:bucket-definitions:read, storage:bucket-definitions:write, storage:bucket-definitions:delete, openpipeline:configurations:read, openpipeline:configurations:write;
Make sure that the following permissions are added to the user who is going to use the PowerConnect App:
storage:logs:read
storage:metrics:read
storage:buckets:read
document:documents:read
document:documents:write
document:documents:admin
document:documents:delete
document:trash.documents:delete
document:direct-shares:read
document:direct-shares:write
document:environment-shares:read
document:environment-shares:write
state:user-app-states:read
state:user-app-states:write
storage:bucket-definitions:read
storage:bucket-definitions:write
storage:bucket-definitions:delete
openpipeline:configurations:read
openpipeline:configurations:write
environment-api:credentials:write
environment-api:credentials:read