Workspace Settings¶

Manage > Workspace Settings is the core configuration center for a workspace. Workspace owners and administrators can:

View workspace version, site, Token, member count, and other data.
Export/import configurations such as dashboards and monitors to enable cross-workspace reuse.
Ensure data security through multi-layer mechanisms like MFA, IP whitelists, and invitation approvals.
Perform irreversible operations such as adjusting storage policies and cleaning historical data.

Basic Information¶

Displays core information about the current workspace. Only owners and administrators can edit.

Field	Description	Visibility	Editable
Current Version	Commercial Plan/Free Plan	All members	No
Site	Data center node where the workspace is deployed (e.g., Alibaba Cloud, Huawei Cloud, AWS, etc.)	All members	No
Workspace Name	Name displayed in the top-left workspace switcher	All members	Yes
Workspace Language	Language for system events, alerts, SMS templates	All members	Yes
Workspace Note	Auxiliary identification information from a personal perspective	Visible only to self	Yes
Workspace Description	Purpose description of the workspace	All members	Yes
Workspace ID	Globally unique identifier (starting with `wksp_`)	All members	No
Token	Authentication key for data reporting	Owner/Administrator	Yes
Member Count	Number of members currently joined in the workspace	All members	No

Workspace Language¶

Supports Chinese or English. After switching, system events, alert notifications, SMS templates, etc., will use the corresponding language by default.

Note

The "Workspace Language" here applies only to the current settings page and does not affect the interface language displayed after you enter the workspace. Upon login, the system prioritizes the display language used during the last successful console access by the browser. If no record exists, the browser's current language is used. For example, if the browser language is Chinese, the console will be displayed in Chinese by default.
Only workspace owners or administrators have the authority to modify this language setting.

Note¶

Add a note for the current workspace that is visible only to yourself.

The note is displayed alongside the workspace name in the top-left corner for quick identification.

Description¶

Add descriptive information for the current workspace. After successful addition, it can be viewed directly in the top-left workspace switcher for easy identification.

Token¶

Token is the authentication credential for DataKit and OpenAPI data reporting.

View and Copy¶

Click the copy button to the right of the Token to copy the complete key.

Replace Token¶

Click Replace, set the expiration time for the old Token, and generate a new Token:

Expire immediately
10 minutes
6 hours
12 hours
24 hours

Replacement Notes

After selecting "Expire immediately", DataKits using the old Token will stop reporting immediately, which may cause monitoring interruptions and alert failures.

Edit Token Configuration¶

Click Edit to configure:

Custom Token: Set a custom key (optional).
Enable Data Query: Allow querying platform data via Token (disabled by default, recommended to enable as needed).

Configuration Migration¶

Supports one-click import and export of all workspace configurations, covering core resources such as monitoring views, alert strategies, data processing rules, role management settings, and data compliance.

Expand to view specific resource items

Dashboards
Custom Explorers
Monitor configurations
Data forwarding rules
Alert strategies
Notification targets
SLO
Security detection rules
Log indexes (excluding external indexes)
Attribute Claims
Field management
Global tags
Environment variables (excluding RUM)
Role management
Blacklist
Pipelines
Regular expressions
Field display permissions
Sensitive data scanning

Click Export to download a compressed package containing all relevant configurations of the current workspace.
Click Import to upload a JSON file or compressed package. If duplicate resource names are detected, the system provides the following handling methods:
- Skip: Means only create non-duplicate files.
- Overwrite: Overwrite and create corresponding resources based on the imported file names.

Advanced Settings¶

Click Settings to enter the advanced configuration page:

Key Metrics: Configure business key metrics display

Feature Menu: Control the display/hide of the left navigation menu

Workspace Time Zone: Set a unified time zone for data display

Data Forwarding - Query and Recovery Duration: Configure retention policies related to data forwarding

Log Visibility Delay - Set a unified delay window for log queries

Security¶

Invitation Approval¶

When enabled, invited members require approval from the owner or administrator before they can join. If disabled, invited members can enter the workspace directly.

MFA Security Authentication¶

When enabled, all workspace members must complete MFA binding and authentication; otherwise, they cannot access the workspace.

API Key Security Display Policy¶

Used to uniformly manage the display method of API Keys within the workspace. When enabled, newly created API Keys are displayed only once upon successful creation and cannot be viewed in plaintext after closing the page. When this policy is disabled, members with permissions can view the complete Key again.

Change Notes

After changing the policy, it only takes effect for newly created API Keys subsequently. Old API Keys retain their original display form.
Automatically created API Keys remain displayed in plaintext.
This setting is disabled by default and can only be modified by the workspace owner.

After an API Key is successfully created, a pop-up window displays the complete plaintext API Key once, including name, API Key, role, creation time, and note. The bottom left corner supports downloading as a text file (.txt).

After closing the creation success pop-up or refreshing the page, the plaintext of this API Key is no longer displayed. The list and details page will only show "Key is only visible upon creation."

AI Intelligent Analysis¶

Controls the data export permissions for AI features within the workspace.

Enable: Monitoring data, log snippets, trace data, metric summaries, and other information from this workspace may be transmitted to external large models (public network services) for processing.
Disable: AI features are unavailable, and data will not be exported.

Note

Newly created workspaces have this switch disabled by default.
Only the workspace owner can enable or disable this switch; non-owners do not see this switch.
Before enabling this feature, confirm that your organization's security and compliance policies permit such data export operations to ensure data security and compliance.
Enabling and disabling applies to all AI features simultaneously.

Login IP Whitelist¶

Restricts the IP sources that can log in to the console.

When enabled, only IPs within the whitelist can log in normally; other sources will be denied.

IP whitelist writing specifications are as follows:

Multiple IPs require line breaks. Each line can only contain one IP or network segment. Up to 1,000 entries can be added.
Specify IP address: 192.168.0.1, indicating that the IP address 192.168.0.1 is allowed to access.
Specify IP segment: 192.168.0.0/24, indicating that IP addresses from 192.168.0.1 to 192.168.0.255 are allowed to access.
All IP addresses: 0.0.0.0/0.

Note

Workspace owners are not subject to this restriction, ensuring they are not accidentally locked out.

Data Reporting IP Whitelist¶

Restricts the egress IPs that can report data. When enabled, only IPs within the whitelist can report data normally; data from other sources will be blocked.

IP whitelist writing specifications are as follows:

Multiple IPs require line breaks. Each line can only contain one IP or network segment. Up to 1,000 entries can be added.
Specify IP address: 192.168.0.1, indicating that the IP address 192.168.0.1 is allowed to access.
Specify IP segment: 192.168.0.0/24, indicating that IP addresses from 192.168.0.1 to 192.168.0.255 are allowed to access.
All IP addresses: 0.0.0.0/0.

Risky Operations¶

The following operations are irreversible. Please execute with caution.

Change Data Storage Policy¶

The system supports owners in changing the data storage policy within the workspace.

Go to Manage > Workspace Settings > Change Data Storage Policy.
Click Change.
Select the desired data storage duration.
Confirm.

Note

After the change, new data is stored according to the new policy. Historical data is not affected.

Delete Measurement¶

The system supports owners and administrators in deleting measurements within the workspace.

Go to Manage > Workspace Settings > Delete Specified Measurement.
Select the measurement name from the dropdown (supports fuzzy matching).
Click Confirm to enter the deletion queue and wait for deletion.

Note

Only workspace owners and administrators are allowed to perform this operation.
Once a measurement is deleted, it cannot be recovered. Please operate with caution.
Deleting a measurement generates system notification events, such as user created a delete measurement task, delete measurement task executed successfully, delete measurement task execution failed, etc.

Delete Resource Catalog¶

The system supports owners and administrators in deleting specified resource catalog classifications and all resource catalogs.

Go to Manage > Workspace Settings > Delete Resource Catalog.
Click Delete Resource Catalog.
Select the method for deleting the resource catalog.
Confirm.
- Specified Resource Catalog Classification: Only deletes data under the selected object classification; does not delete indexes.
- All Resource Catalogs: Deletes all resource catalog data and indexes.