Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account

Continually managing your member accounts within GuardDuty

PDF
RSS
Focus mode
Continually managing your member accounts within GuardDuty - Amazon GuardDuty

As a delegated GuardDuty administrator account, you are responsible for maintaining the configuration of GuardDuty and its optional protection plans for all the accounts in your organization in each supported AWS Region. The following sections provide the options about maintaining the configuration status of GuardDuty or any of its optional protection plans:

To maintain the configuration status of your entire organization in each Region

  • Set auto-enable preferences for the entire organization by using GuardDuty console – You can enable GuardDuty automatically for either all (ALL) the members in the organization or new (NEW) members joining the organization, or choose not to (NONE) auto-enable it any of the members in the organization.

    You can also configure the same or different settings for any of the protection plans within GuardDuty.

    It might take up to 24 hours to update the configuration for all member accounts in the organization.

  • Update auto-enable preferences by using API – Run UpdateOrganizationConfiguration to automatically configure GuardDuty and its optional protection plans for the organization. When you run CreateMembers to add new member accounts in your organization, the configured settings will apply automatically. When you run CreateMembers with an existing member account, the organization configuration will also apply to the existing members. This might change the current configuration of the existing member accounts.

    To view all the accounts in your organization, run ListAccounts in the AWS Organizations API Reference.

To maintain the configuration status for member accounts individually in each Region

  • To view all the accounts in your organization, run ListAccounts in the AWS Organizations API Reference.

  • When you want selective member accounts to have a different configuration status, run UpdateMemberDetectors for each member account individually.

    You can use GuardDuty console to perform the same task by navigating to the Accounts page in the GuardDuty console.

    For information about enabling protection plans for individual accounts by using either console or API, see the configuring page for the corresponding protection plan.

PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.