AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Enables the management of privileged root user credentials across member accounts in your organization. When you enable root credentials management for centralized root access, the management account and the delegated admininstrator for IAM can manage root user credentials for member accounts in your organization.
Before you enable centralized root access, you must have an account configured with the following settings:
You must manage your Amazon Web Services accounts in Organizations.
Enable trusted access for Identity and Access Management in Organizations. For details, see IAM and Organizations in the Organizations User Guide.
For .NET Core this operation is only available in asynchronous form. Please refer to EnableOrganizationsRootCredentialsManagementAsync.
Namespace: Amazon.IdentityManagement
Assembly: AWSSDK.IdentityManagement.dll
Version: 3.x.y.z
public virtual EnableOrganizationsRootCredentialsManagementResponse EnableOrganizationsRootCredentialsManagement( EnableOrganizationsRootCredentialsManagementRequest request )
Container for the necessary parameters to execute the EnableOrganizationsRootCredentialsManagement service method.
| Exception | Condition |
|---|---|
| AccountNotManagementOrDelegatedAdministratorException | The request was rejected because the account making the request is not the management account or delegated administrator account for centralized root access. |
| CallerIsNotManagementAccountException | The request was rejected because the account making the request is not the management account for the organization. |
| OrganizationNotFoundException | The request was rejected because no organization is associated with your account. |
| OrganizationNotInAllFeaturesModeException | The request was rejected because your organization does not have All features enabled. For more information, see Available feature sets in the Organizations User Guide. |
| ServiceAccessNotEnabledException | The request was rejected because trusted access is not enabled for IAM in Organizations. For details, see IAM and Organizations in the Organizations User Guide. |
The following command enables the management of privileged root user credentials across member accounts in your organization.
var client = new AmazonIdentityManagementServiceClient();
var response = client.EnableOrganizationsRootCredentialsManagement(new EnableOrganizationsRootCredentialsManagementRequest
{
});
List<string> enabledFeatures = response.EnabledFeatures;
string organizationId = response.OrganizationId;
.NET Framework:
Supported in: 4.5 and newer, 3.5