Question with Member Permissions

I would like to know if it is possible, whenever a member is going to direct a domain or DNS to some other server, I get a notification for me to approve. Same as 2-factor security.

Example: Member X has access to buy domain, redirect…
Member X purchased the domain and redirected it to another server, before Cloudflare approves this transfer, it sends an email to the business account owner, requesting approval.

Is there such a possibility?
Or some other way for me to be sure members won’t redirect my domains for their own use?

You could write a script to fetch each member’s activity from your account’s Audit Log.

https://api.cloudflare.com/#audit-logs-properties

But that way he’ll still have the freedom to manage the accounts, right?
I’ll just get a background on what he’s been up to…

If he deletes all accounts, I will only know after it has already occurred, I wanted something to prevent

I guess you mean “deletes all domains”, right? Because you started by asking whether a member with a scope that allowed them to create a domain and redirect it could be somehow controlled by the super admin.

I don’t think it’s possible to block an authorized user from performing what they were authorized to do. It’s all a matter of trust. If you don’t trust, don’t authorize. If you need to monitor, then the API could be used with a script.

1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.