RegisterOrganizationDelegatedAdmin
Registers an organization’s member account as the CloudTrail delegated administrator.
Request Syntax
{
"MemberAccountId": "string
"
}
Request Parameters
For information about the parameters that are common to all actions, see Common Parameters.
The request accepts the following data in JSON format.
- MemberAccountId
-
An organization member account ID that you want to designate as a delegated administrator.
Type: String
Length Constraints: Minimum length of 12. Maximum length of 16.
Pattern:
\d+
Required: Yes
Response Elements
If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.
Errors
For information about the errors that are common to all actions, see Common Errors.
- AccountNotFoundException
-
This exception is thrown when the specified account is not found or not part of an organization.
HTTP Status Code: 400
- AccountRegisteredException
-
This exception is thrown when the account is already registered as the CloudTrail delegated administrator.
HTTP Status Code: 400
- CannotDelegateManagementAccountException
-
This exception is thrown when the management account of an organization is registered as the CloudTrail delegated administrator.
HTTP Status Code: 400
- CloudTrailAccessNotEnabledException
-
This exception is thrown when trusted access has not been enabled between AWS CloudTrail and AWS Organizations. For more information, see How to enable or disable trusted access in the AWS Organizations User Guide and Prepare For Creating a Trail For Your Organization in the AWS CloudTrail User Guide.
HTTP Status Code: 400
- ConflictException
-
This exception is thrown when the specified resource is not ready for an operation. This can occur when you try to run an operation on a resource before CloudTrail has time to fully load the resource, or because another operation is modifying the resource. If this exception occurs, wait a few minutes, and then try the operation again.
HTTP Status Code: 400
- DelegatedAdminAccountLimitExceededException
-
This exception is thrown when the maximum number of CloudTrail delegated administrators is reached.
HTTP Status Code: 400
- InsufficientDependencyServiceAccessPermissionException
-
This exception is thrown when the IAM identity that is used to create the organization resource lacks one or more required permissions for creating an organization resource in a required service.
HTTP Status Code: 400
- InvalidParameterException
-
The request includes a parameter that is not valid.
HTTP Status Code: 400
- NotOrganizationManagementAccountException
-
This exception is thrown when the account making the request is not the organization's management account.
HTTP Status Code: 400
- OperationNotPermittedException
-
This exception is thrown when the requested operation is not permitted.
HTTP Status Code: 400
- OrganizationNotInAllFeaturesModeException
-
This exception is thrown when AWS Organizations is not configured to support all features. All features must be enabled in Organizations to support creating an organization trail or event data store.
HTTP Status Code: 400
- OrganizationsNotInUseException
-
This exception is thrown when the request is made from an AWS account that is not a member of an organization. To make this request, sign in using the credentials of an account that belongs to an organization.
HTTP Status Code: 400
- UnsupportedOperationException
-
This exception is thrown when the requested operation is not supported.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following: