RegisterOrganizationDelegatedAdmin - AWS CloudTrail

RegisterOrganizationDelegatedAdmin

Registers an organization’s member account as the CloudTrail delegated administrator.

Request Syntax

{ "MemberAccountId": "string" }

Request Parameters

For information about the parameters that are common to all actions, see Common Parameters.

The request accepts the following data in JSON format.

MemberAccountId

An organization member account ID that you want to designate as a delegated administrator.

Type: String

Length Constraints: Minimum length of 12. Maximum length of 16.

Pattern: \d+

Required: Yes

Response Elements

If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.

Errors

For information about the errors that are common to all actions, see Common Errors.

AccountNotFoundException

This exception is thrown when the specified account is not found or not part of an organization.

HTTP Status Code: 400

AccountRegisteredException

This exception is thrown when the account is already registered as the CloudTrail delegated administrator.

HTTP Status Code: 400

CannotDelegateManagementAccountException

This exception is thrown when the management account of an organization is registered as the CloudTrail delegated administrator.

HTTP Status Code: 400

CloudTrailAccessNotEnabledException

This exception is thrown when trusted access has not been enabled between AWS CloudTrail and AWS Organizations. For more information, see How to enable or disable trusted access in the AWS Organizations User Guide and Prepare For Creating a Trail For Your Organization in the AWS CloudTrail User Guide.

HTTP Status Code: 400

ConflictException

This exception is thrown when the specified resource is not ready for an operation. This can occur when you try to run an operation on a resource before CloudTrail has time to fully load the resource, or because another operation is modifying the resource. If this exception occurs, wait a few minutes, and then try the operation again.

HTTP Status Code: 400

DelegatedAdminAccountLimitExceededException

This exception is thrown when the maximum number of CloudTrail delegated administrators is reached.

HTTP Status Code: 400

InsufficientDependencyServiceAccessPermissionException

This exception is thrown when the IAM identity that is used to create the organization resource lacks one or more required permissions for creating an organization resource in a required service.

HTTP Status Code: 400

InvalidParameterException

The request includes a parameter that is not valid.

HTTP Status Code: 400

NotOrganizationManagementAccountException

This exception is thrown when the account making the request is not the organization's management account.

HTTP Status Code: 400

OperationNotPermittedException

This exception is thrown when the requested operation is not permitted.

HTTP Status Code: 400

OrganizationNotInAllFeaturesModeException

This exception is thrown when AWS Organizations is not configured to support all features. All features must be enabled in Organizations to support creating an organization trail or event data store.

HTTP Status Code: 400

OrganizationsNotInUseException

This exception is thrown when the request is made from an AWS account that is not a member of an organization. To make this request, sign in using the credentials of an account that belongs to an organization.

HTTP Status Code: 400

UnsupportedOperationException

This exception is thrown when the requested operation is not supported.

HTTP Status Code: 400

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: