account
Gets an individual account resource
Overview
| Name | account |
| Type | Resource |
| Description | account |
| Id | awscc.organizations.account |
Fields
| Name | Datatype | Description |
|---|---|---|
account_name | string | The friendly name of the member account. |
email | string | The email address of the owner to assign to the new member account. |
role_name | string | The name of an IAM role that AWS Organizations automatically preconfigures in the new member account. Default name is OrganizationAccountAccessRole if not specified. |
parent_ids | array | List of parent nodes for the member account. Currently only one parent at a time is supported. Default is root. |
tags | array | A list of tags that you want to attach to the newly created account. For each tag in the list, you must specify both a tag key and a value. |
account_id | string | If the account was created successfully, the unique identifier (ID) of the new account. |
arn | string | The Amazon Resource Name (ARN) of the account. |
joined_method | string | The method by which the account joined the organization. |
joined_timestamp | string | The date the account became a part of the organization. |
status | string | The status of the account in the organization. |
region | string | AWS region. |
Methods
Currently only SELECT is supported for this resource resource.
Example
SELECT
region,
account_name,
email,
role_name,
parent_ids,
tags,
account_id,
arn,
joined_method,
joined_timestamp,
status
FROM awscc.organizations.account
WHERE data__Identifier = '<AccountId>';
Permissions
To operate on the account resource, the following permissions are required:
Read
organizations:DescribeAccount,
organizations:ListParents,
organizations:ListTagsForResource
Update
organizations:MoveAccount,
organizations:TagResource,
organizations:UntagResource,
organizations:ListRoots,
organizations:DescribeAccount,
organizations:ListParents,
organizations:ListTagsForResource
Delete
organizations:CloseAccount