Select your cookie preferences

We use cookies and similar tools to enhance your experience, provide our services, deliver relevant advertising, and make improvements. Approved third parties also use these tools to help us deliver advertising and provide certain site features.

deregister_delegated_administrator

deregister_delegated_administrator(**kwargs)

Removes the specified member Amazon Web Services account as a delegated administrator for the specified Amazon Web Services service.

Warning

Deregistering a delegated administrator can have unintended impacts on the functionality of the enabled Amazon Web Services service. See the documentation for the enabled service before you deregister a delegated administrator so that you understand any potential impacts.

You can run this action only for Amazon Web Services services that support this feature. For a current list of services that support it, see the column Supports Delegated Administrator in the table at Amazon Web Services Services that you can use with Organizations in the Organizations User Guide.

This operation can be called only from the organization's management account.

See also: AWS API Documentation

Request Syntax

response = client.deregister_delegated_administrator(
    AccountId='string',
    ServicePrincipal='string'
)
Parameters
  • AccountId (string) --

    [REQUIRED]

    The account ID number of the member account in the organization that you want to deregister as a delegated administrator.

  • ServicePrincipal (string) --

    [REQUIRED]

    The service principal name of an Amazon Web Services service for which the account is a delegated administrator.

    Delegated administrator privileges are revoked for only the specified Amazon Web Services service from the member account. If the specified service is the only service for which the member account is a delegated administrator, the operation also revokes Organizations read action permissions.

Returns

None

Exceptions

  • Organizations.Client.exceptions.AccessDeniedException
  • Organizations.Client.exceptions.AccountNotFoundException
  • Organizations.Client.exceptions.AccountNotRegisteredException
  • Organizations.Client.exceptions.AWSOrganizationsNotInUseException
  • Organizations.Client.exceptions.ConcurrentModificationException
  • Organizations.Client.exceptions.ConstraintViolationException
  • Organizations.Client.exceptions.InvalidInputException
  • Organizations.Client.exceptions.TooManyRequestsException
  • Organizations.Client.exceptions.ServiceException
  • Organizations.Client.exceptions.UnsupportedAPIEndpointException