DisassociateFromAdministratorAccountCommand

Disassociates the current GuardDuty member account from its administrator account.

When you disassociate an invited member from a GuardDuty delegated administrator, the member account details obtained from the CreateMembers  API, including the associated email addresses, are retained. This is done so that the delegated administrator can invoke the InviteMembers  API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers  API.

With autoEnableOrganizationMembers configuration for your organization set to ALL, you'll receive an error if you attempt to disable GuardDuty in a member account.

Example Syntax

Use a bare-bones client and the command you need to make an API call.

import { GuardDutyClient, DisassociateFromAdministratorAccountCommand } from "@aws-sdk/client-guardduty"; // ES Modules import
// const { GuardDutyClient, DisassociateFromAdministratorAccountCommand } = require("@aws-sdk/client-guardduty"); // CommonJS import
const client = new GuardDutyClient(config);
const input = { // DisassociateFromAdministratorAccountRequest
  DetectorId: "STRING_VALUE", // required
};
const command = new DisassociateFromAdministratorAccountCommand(input);
const response = await client.send(command);
// {};

DisassociateFromAdministratorAccountCommand Input

Parameter
Type
Description
DetectorId
Required
string | undefined

The unique ID of the detector of the GuardDuty member account.

DisassociateFromAdministratorAccountCommand Output

Parameter
Type
Description
$metadata
Required
ResponseMetadata
Metadata pertaining to this request.

Throws

Name
Fault
Details
BadRequestException
client

A bad request exception object.

InternalServerErrorException
server

An internal server error exception object.

GuardDutyServiceException
Base exception class for all service exceptions from GuardDuty service.