I would like a assign a member the role required to activate Under Attack mode on specific domains. It should be the least privileged role that allows this action, ideally not just Domain Administrator or Super Administrator
Thank you for the blog post link. I have read that.
Can you explain which specific role are you requesting for ?
That is exactly my point, I do not know which role I am requesting. I know the permission I am requesting, which is the ability to enable and disable “Under Attack Mode” as described at Under Attack mode · Cloudflare Fundamentals docs
What I want to understand is how I would work out which role includes that permission. As an example, here is a Microsoft document covering the built-in roles in Entra, and the permissions that are included in each role.
Is there something like that for Cloudflare roles?
Failing that, do you know which roles would include the permission to enable the Under Attack Mode feature?
Good approach. In reading the doc you shared, I was curious if enabling it selectively would be an option with a less permissive role, in testing that I don’t think it does. Great question and suggestion, I’ve tagged your topic for our docs team to review.
