When you sign in to your organization's management account, you can add or remove the tags attached to an OU. To do this, complete the following steps.
Minimum permissions
To edit the tags attached to an OU within a root in your organization, you must have the following permissions:
-
organizations:DescribeOrganization– required only when using the Organizations console -
organizations:DescribeOrganizationalUnit– required only when using the Organizations console -
organizations:TagResource -
organizations:UntagResource
To edit the tags attached to an OU
-
Sign in to the AWS Organizations console
. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization’s management account. -
On the AWS accounts
page, navigate to and choose the name of the OU whose tags you want to edit. -
On the OU's details page, choose the Tags tab, and then choose Manage tags.
-
You can perform any of these actions on this tab:
-
Edit the value for any tag by entering a new value over the old one. You can't modify the tag key. To change a key, you must delete the tag with the old key and add a tag with the new key.
-
Remove an existing tag by choosing Remove next to the tag you want to remive.
-
Add a new tag key and value pair. Choose Add tag, then enter the new key name and optional value in the provided boxes. If you leave the Value box empty, the value is an empty string; it isn't
null.
-
-
Choose Save changes after you've made all the additions, removals, and edits you want to make.
