Deleting an organization
When you no longer need your organization, you can delete it. Deleting an organization does not close the management account, instead it removes the management account from the organization and deletes the organization itself.
The former management account becomes a standalone AWS account that is no longer managed by AWS Organizations. You then have three options:
You can continue to use it as a standalone account
You can use it to create a different organization
You can accept an invitation from another organization to add the account to that organization as a member account.
Considerations
Deleted organizations cannot be recovered
If you delete an organization, you can't recover it. If you created any policies inside of the organization, they're also deleted and you can't recover them.
Organizations can only be deleted after all member account have been removed
You can delete an organization only after you remove all member accounts from the organization. If you created some of your member accounts using AWS Organizations, you might be blocked from removing those accounts. You can remove a member account only if it has all the information that's required to operate as a standalone AWS account. For more information about how to provide that information and then remove the account, see Leave an organization from your member account.
Member accounts in a 'suspended' state cannot be removed from an organization
If you closed a member account before you remove it from the organization, it enters a 'suspended' state for a period of time and you can't remove the account from the organization until it is finally closed. This can take up to 90 days and can prevent you from deleting the organization until all member accounts are completely closed.
Removing the management account from an organization by deleting the organization can affect the account in the following ways:
-
The account is responsible for paying only its own charges and is no longer responsible for the charges incurred by any other account.
-
Integration with other services might be disabled. For example, AWS IAM Identity Center requires an organization to operate, so if you remove an account from an organization that supports IAM Identity Center, the users in that account can no longer use that service.
The management account of an organization is never affected by service control policies (SCPs), so there is no change in permissions after SCPs are no longer available.
Delete an organization
Use the following procedure to delete an organization which reverts the former management account to a standalone AWS account that is no longer managed by AWS Organizations.
Minimum permissions
To delete an organization, you must sign in as a user or role in the management account, and you must have the following permissions:
-
organizations:DeleteOrganization
-
organizations:DescribeOrganization
– required only when using the Organizations console
To delete an organization
-
Sign in to the AWS Organizations console
. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization’s management account. -
Before you can delete the organization, you must first remove all accounts from the organization. For more information, see Removing a member account from your organization.
-
Navigate to the Settings
page, and then choose Delete organization. -
In the Delete organization confirmation dialog box, enter the organization's ID which is displayed in the line above the text box. Then, choose Delete organization.
Important
This operation does not close the management account but does return it to a standalone AWS account. To close the account, follow the steps at Closing a member account in your organization.
The following code examples show how to use DeleteOrganization
.