> For the complete documentation index, see [llms.txt](https://docs.datasentinel.io/manual/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.datasentinel.io/manual/guides/readme/onboard-your-first-cluster.md). # Onboard Your First PostgreSQL Cluster

This guide walks you from a freshly installed Datasentinel platform to your **first monitored PostgreSQL cluster**, end to end. By the end you will have: 1. The required PostgreSQL extension installed (and the optional ones you want). 2. A dedicated read-only **monitoring user**. 3. Network access opened from Datasentinel to your instance. 4. The instance **registered** in Datasentinel, either through a local agent or agentlessly. 5. A clean **tagging scheme** that will scale to dozens of clusters. {% hint style="info" %} You only need to do this once per cluster. Tagging it well from day one pays off later for filtering dashboards, [**consolidating workloads**](/manual/features/tips-and-hints/consolidated-view.md), and scoping [**role-based access**](/manual/guides/readme/manage-users-and-role-based-access.md). {% endhint %} ## Prerequisites Before you begin, make sure you have:

Requirement	Detail
PostgreSQL version	10 or later (older versions require a superuser monitoring account).
Superuser access	Needed only for the one-time setup (install extension, create user, edit `postgresql.conf` / `pg_hba.conf`).
Network path	The Datasentinel platform (agentless) or a local Datasentinel agent must reach the PostgreSQL port.
Datasentinel platform	Installed and reachable. See Installation › Platform.

*** ## Step 1: Install the required extension Datasentinel depends on [**pg\_stat\_statements**](/manual/getting-started/postgresql-clusters/extensions/pg_stat_statements.md) to collect per-query execution statistics. This is the **only mandatory** extension. Three more are optional and unlock additional features. {% stepper %} {% step %} ### Preload the extension Edit `postgresql.conf` and add `pg_stat_statements` to `shared_preload_libraries`, plus the recommended settings: ```apache shared_preload_libraries = 'pg_stat_statements' # Track all statements pg_stat_statements.track = all # Optional, not necessary for Datasentinel to save pg_stat_statements pg_stat_statements.save = false # Reduce the default 5000 to e.g. 2000. Datasentinel collects metrics at regular intervals pg_stat_statements.max = 2000 # Since PostgreSQL 14 compute_query_id = on # Log I/O timing track_io_timing = on ``` A PostgreSQL **restart** is required for `shared_preload_libraries` to take effect. {% endstep %} {% step %} ### Create the extension Connect to the internal `postgres` database as superuser and run: ```sql CREATE EXTENSION pg_stat_statements; ``` Verify it is loaded: ```sql SELECT current_database(), extname FROM pg_extension WHERE extname = 'pg_stat_statements'; ``` {% endstep %} {% step %} ### Install the optional extensions These add capabilities that you will likely want later. Install them now to avoid a second maintenance window.


pg_store_plans	Captures and exposes execution plans for every tracked query.	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/i5gbmUwG8l9T0udkODbo
system_stats	Reports CPU, memory and disk metrics from the database host (useful when the agentless model can't reach the OS).	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/ucW3vLylxbehbTpefoYg
pg_buffercache	Required by Live360 to surface the Disk & Cache Usage view.	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/bA1oQY0HMBohHS46KOsk

{% endstep %} {% endstepper %} *** ## Step 2: Create the monitoring user Datasentinel uses a dedicated, **read-only** PostgreSQL user. It never writes data. Access is restricted to the system catalogs needed to retrieve metrics. {% tabs %} {% tab title="PostgreSQL >= 10" %} ```sql CREATE USER datasentinel PASSWORD 'myPassword'; GRANT pg_monitor, pg_read_all_settings, pg_read_all_stats TO datasentinel; ``` If you want to **terminate sessions** from the Datasentinel UI (Live360), also grant: ```sql GRANT pg_signal_backend TO datasentinel; ``` {% endtab %} {% tab title="PostgreSQL < 10" %} The user must have the `SUPERUSER` role on older versions, which is the only way to read the required statistics. ```sql CREATE USER datasentinel PASSWORD 'myPassword'; ALTER USER datasentinel WITH SUPERUSER; ``` {% endtab %} {% endtabs %} {% hint style="warning" %} The default PostgreSQL `search_path` is `"$user", public`. If you have changed it at the instance level, make sure the `datasentinel` user can still see the `public` schema: ```sql ALTER USER datasentinel SET search_path TO "$user", public; ``` {% endhint %} *** ## Step 3: Open the network path Edit `pg_hba.conf` so the monitoring user can authenticate from the Datasentinel platform (agentless) or the host running the local agent: ``` # TYPE DATABASE USER ADDRESS METHOD host all datasentinel /32 md5 ``` {% hint style="info" %} The user must be able to connect to **all** databases on the instance. That is how Datasentinel discovers per-database activity. {% endhint %} Reload the configuration: ```sql SELECT pg_reload_conf(); ``` *** ## Step 4: Register the instance You have two ways to connect Datasentinel to your cluster. They are functionally equivalent: pick the one that fits your environment. Unsure? See the [**Architecture comparison**](/manual/getting-started/architecture.md). {% tabs %} {% tab title="Agent-based" %} Install a local Datasentinel **agent** on (or near) the PostgreSQL host. The agent connects to the database, collects metrics, and pushes them to the platform. 1. Install the agent. See [**Installation › Agent**](/manual/getting-started/installation/agent.md). 2. Describe the connection in a JSON file: ```bash cat > myInstance.json <Tag keyExample valuesWhyapplicationsales, inventory, billingGroup instances by the product or service they serve. Drives most dashboards and RBAC.environmentproduction, staging, developmentSeparate critical workloads, restrict developer access to non-prod, drive alert severity.clusterorders, analyticsRequired to consolidate the workload across HA primaries and replicas.datacentereu-west, us-east, on-prem-frGeo or provider context for incident triage.ownerteam-paymentsSo the responsible team is one click away from any dashboard. {% hint style="info" %} Datasentinel adds a set of [**automatic tags**](/manual/features/tips-and-hints/tags.md) (server, PostgreSQL version, database, wait events…). Your custom tags complement them. Keep keys short, lowercase and consistent. {% endhint %} *** ## Step 6: Verify and explore Open Datasentinel and confirm the new instance is collecting data:


Home	Your cluster should appear in the global list with its tags applied as filters.	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/YMhzhoCU4kIcBRXXmohx
Session History	Within a minute, the Active Session History chart starts populating: confirmation that the agent or platform is sampling.	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/yUGnw5CyiREJgqkA9ALe
Top Queries	After a few minutes of activity, per-query stats from `pg_stat_statements` appear here.	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/0z3m1C0QshZ1dCVZ6tw7
Live360	Open it to confirm your monitoring user has the right grants (Disk & Cache requires `pg_buffercache`).	/spaces/lcWi6G1jtNuyGT9C0pkc/pages/6m2QWxqCtnDKY67DLi9v

*** ## Where to go next Now that your first cluster is monitored, build on it:


	Manage Users and Role-Based Access: give the right people access to the right instances, based on the tags you just set.	/pages/M5MUBWa2Y2eRROXypHwm
	Monitor High-Availability Clusters: add the primary and its replicas, then consolidate the workload at the cluster level.	/pages/f0m9FJY4KZgtCtJYermh
	Monitor Cloud-Managed Instances: onboard RDS, Azure, Cloud SQL and other managed services agentlessly.	/pages/aGpRhzYSyd7klXa01uYC
	Automate with the API: register the next clusters, users and roles from a script instead of the UI.	/pages/lk2kg8QxwAUbloVoBKDz

## Conclusion In six short steps you have moved a PostgreSQL instance from invisible to fully observable: the right extension is loaded, a read-only monitoring user is in place, the network path is open, the connection is registered, and your tagging scheme is ready to carry the rest of your fleet. The same recipe (extensions, user, network, register, tag, verify) applies to every cluster you add next. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.datasentinel.io/manual/guides/readme/onboard-your-first-cluster.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.

:users:

:layer-plus:

:cloud:

:code: