Organizations#
Client#
- class Organizations.Client#
A low-level client representing AWS Organizations
Organizations is a web service that enables you to consolidate your multiple Amazon Web Services accounts into an organization and centrally manage your accounts and their resources.
This guide provides descriptions of the Organizations operations. For more information about using this service, see the Organizations User Guide.
Support and feedback for Organizations
We welcome your feedback. Send your comments to feedback-awsorganizations@amazon.com or post your feedback and questions in the Organizations support forum. For more information about the Amazon Web Services support forums, see Forums Help.
Endpoint to call When using the CLI or the Amazon Web Services SDK
For the current release of Organizations, specify the
us-east-1
region for all Amazon Web Services API and CLI calls made from the commercial Amazon Web Services Regions outside of China. If calling from one of the Amazon Web Services Regions in China, then specifycn-northwest-1
. You can do this in the CLI by using these parameters and commands:Use the following parameter with each command to specify both the endpoint and its region:
--endpoint-url https://organizations.us-east-1.amazonaws.com
(from commercial Amazon Web Services Regions outside of China) or--endpoint-url https://organizations---cn-northwest-1.amazonaws.com.rproxy.goskope.com.cn
(from Amazon Web Services Regions in China)Use the default endpoint, but configure your default region with this command:
aws configure set default.region us-east-1
(from commercial Amazon Web Services Regions outside of China) oraws configure set default.region cn-northwest-1
(from Amazon Web Services Regions in China)Use the following parameter with each command to specify the endpoint:
--region us-east-1
(from commercial Amazon Web Services Regions outside of China) or--region cn-northwest-1
(from Amazon Web Services Regions in China)
Recording API Requests
Organizations supports CloudTrail, a service that records Amazon Web Services API calls for your Amazon Web Services account and delivers log files to an Amazon S3 bucket. By using information collected by CloudTrail, you can determine which requests the Organizations service received, who made the request and when, and so on. For more about Organizations and its support for CloudTrail, see Logging Organizations Events with CloudTrail in the Organizations User Guide. To learn more about CloudTrail, including how to turn it on and find your log files, see the CloudTrail User Guide.
import boto3 client = boto3.client('organizations')
These are the available methods:
- accept_handshake
- attach_policy
- can_paginate
- cancel_handshake
- close
- close_account
- create_account
- create_gov_cloud_account
- create_organization
- create_organizational_unit
- create_policy
- decline_handshake
- delete_organization
- delete_organizational_unit
- delete_policy
- delete_resource_policy
- deregister_delegated_administrator
- describe_account
- describe_create_account_status
- describe_effective_policy
- describe_handshake
- describe_organization
- describe_organizational_unit
- describe_policy
- describe_resource_policy
- detach_policy
- disable_aws_service_access
- disable_policy_type
- enable_all_features
- enable_aws_service_access
- enable_policy_type
- get_paginator
- get_waiter
- invite_account_to_organization
- leave_organization
- list_accounts
- list_accounts_for_parent
- list_aws_service_access_for_organization
- list_children
- list_create_account_status
- list_delegated_administrators
- list_delegated_services_for_account
- list_handshakes_for_account
- list_handshakes_for_organization
- list_organizational_units_for_parent
- list_parents
- list_policies
- list_policies_for_target
- list_roots
- list_tags_for_resource
- list_targets_for_policy
- move_account
- put_resource_policy
- register_delegated_administrator
- remove_account_from_organization
- tag_resource
- untag_resource
- update_organizational_unit
- update_policy
Paginators#
Paginators are available on a client instance via the get_paginator
method. For more detailed instructions and examples on the usage of paginators, see the paginators user guide.
The available paginators are:
- ListAWSServiceAccessForOrganization
- ListAccounts
- ListAccountsForParent
- ListChildren
- ListCreateAccountStatus
- ListDelegatedAdministrators
- ListDelegatedServicesForAccount
- ListHandshakesForAccount
- ListHandshakesForOrganization
- ListOrganizationalUnitsForParent
- ListParents
- ListPolicies
- ListPoliciesForTarget
- ListRoots
- ListTagsForResource
- ListTargetsForPolicy