Policy enforcement modes

Enforcement mode defines how the gateway applies policy decisions. The policy engine supports two modes:

In LOG_ONLY mode, the policy engine evaluates and logs whether the action is would be allowed or denied without enforcing the the decision
In ENFORCE mode, the policy engine evaluates the action and enforces decisions by allowing or denying agent operations.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Update existing gateway with AgentCore Policy Engine

Use a AgentCore Gateway with AgentCore Policy