AWS Organizations API Reference
API Reference (API Version 2016-11-28)


Retrieves information about the organization that the user's account belongs to.

This operation can be called from any account in the organization.


Even if a policy type is shown as available in the organization, it can be disabled separately at the root level with DisablePolicyType. Use ListRoots to see the status of policy types for a specified root.

Response Syntax

{ "Organization": { "Arn": "string", "AvailablePolicyTypes": [ { "Status": "string", "Type": "string" } ], "FeatureSet": "string", "Id": "string", "MasterAccountArn": "string", "MasterAccountEmail": "string", "MasterAccountId": "string" } }

Response Elements

If the action is successful, the service sends back an HTTP 200 response.

The following data is returned in JSON format by the service.


A structure that contains information about the organization.

Type: Organization object


For information about the errors that are common to all actions, see Common Errors.


You don't have permissions to perform the requested operation. The user or role that is making the request must have at least one IAM permissions policy attached that grants the required permissions. For more information, see Access Management in the IAM User Guide.

HTTP Status Code: 400


Your account is not a member of an organization. To make this request, you must use the credentials of an account that belongs to an organization.

HTTP Status Code: 400


The target of the operation is currently being modified by a different request. Try again later.

HTTP Status Code: 400


AWS Organizations can't complete your request because of an internal service error. Try again later.

HTTP Status Code: 400


You've sent too many requests in too short a period of time. The limit helps protect against denial-of-service attacks. Try again later.

HTTP Status Code: 400


The following example shows how to request information about the current user's organization:

Sample Request

POST / HTTP/1.1 Host: Accept-Encoding: identity Content-Length: 2 X-Amz-Target: AWSOrganizationsV20161128.DescribeOrganization X-Amz-Date: 20161130T170925Z User-Agent: aws-cli/1.10.18 Python/2.7.8 Linux/2.6.18-164.el5 botocore/1.4.9 Content-Type: application/x-amz-json-1.1 Authorization: AWS4-HMAC-SHA256 Credential=AKIAIOSFODNN7EXAMPLE/20161130/us-east-1/organizations/aws4_request, SignedHeaders=content-type;host;user-agent;x-amz-date;x-amz-target, Signature=EXAMPLESIGabcdef1234567890abcdef1234567890abcdef123456EXAMPLESIG {}

Sample Response

HTTP/1.1 200 OK x-amzn-RequestId: EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE Content-Type: application/x-amz-json-1.1 Content-Length: 247 Date: Tue, 30 Nov 2016 17:09:26 GMT { "Organization": { "MasterAccountArn": "arn:aws:organizations::111111111111:account/o-exampleorgid/111111111111", "MasterAccountEmail": "", "MasterAccountId": "111111111111", "Id": "o-exampleorgid", "FeatureSet": "ALL", "Arn": "arn:aws:organizations::111111111111:organization/o-exampleorgid", "AvailablePolicyTypes": [ { "Status": "ENABLED", "Type": "SERVICE_CONTROL_POLICY" } ] } }

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: