shield:EnableProactiveEngagement

Write

shield:EnableProactiveEngagement is a Write access-level action in the shield service. Grants permission to authorize the DDoS Response Team (DRT) to use email and phone to notify contacts about escalations

Resource types

This action does not support resource-level permissions; use "Resource": "*" in your policy.

Condition keys

No condition keys are documented for this action.

Example IAM policy

A minimal policy that allows shield:EnableProactiveEngagement. Replace "Resource": "*" with a specific ARN to follow least privilege.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "AllowShieldEnableProactiveEngagement",
      "Effect": "Allow",
      "Action": "shield:EnableProactiveEngagement",
      "Resource": "*"
    }
  ]
}

Related actions in shield

View all shield actions →