Viewing details about your organization

You can perform the following tasks to view details about elements of your organization.

Viewing details of an organization from the management account

Minimum permissions

To view the details of an organization, you must have the following permission:

• organizations:DescribeOrganization

AWS Management Console

To view details of an organization

When signed in to the organization's management account (formerly known as the "master account") in the AWS Organizations console, you can view details of the organization.

1. Sign in to the Organizations console at https://console.aws.amazon.com/organizations/. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization's management account.

2. Choose the Settings tab.

   The console displays details about the organization, including its ID and the email address of the owner of its management account.

AWS CLI, AWS API

To view details of an organization

You can use one of the following commands to view details of an organization:

• AWS CLI: aws organizations describe-organization

• AWS API: DescribeOrganization

Viewing details of a root

Minimum permissions

To view the details of a root, you must have the following permissions:

• organizations:DescribeOrganization (console only)

• organizations:ListRoots

AWS Management Console

To view details of a root

When signed in to the organization's management account in the AWS Organizations console, you can view details of a root.

1. Sign in to the Organizations console at https://console.aws.amazon.com/organizations/. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization's management account.

2. Choose the Organize accounts tab, and then choose Home.

3. Choose the Root entity. Root is the default name, but you can rename it using the API or command line tools.

   The Root pane on the right side of the page shows the details of the root.

AWS CLI, AWS API

To view details of a root

You can use one of the following commands to view details of a root:

• AWS CLI: aws organizations list-roots

• AWS API: ListRoots

Viewing details of an OU

Minimum permissions

To view the details of an organizational unit (OU), you must have the following permissions:

• organizations:DescribeOrganizationalUnit

• organizations:DescribeOrganization (console only)

• organizations:ListOrganizationsUnitsForParent (console only)

• organizations:ListRoots (console only)

AWS Management Console

To view details of an OU

When signed in to the organization's management account in the AWS Organizations console, you can view details of the OUs in your organization.

1. Sign in to the Organizations console at https://console.aws.amazon.com/organizations/. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization's management account.

2. On the Organize accounts tab, navigate to the OU that you want to examine. If the OU that you want is a child of another OU, choose each OU in the hierarchy to find the one you're looking for.

3. Select the check box for the OU.

   The Details pane on the right side of the page shows information about the OU.

AWS CLI, AWS API

To view details of an OU

You can use one of the following commands to view details of an OU:

• AWS CLI: aws organizations describe-organizational-unit

• AWS API: DescribeOrganizationalUnit

Viewing details of an account

Minimum permissions

To view the details of an AWS account, you must have the following permissions:

• organizations:DescribeAccount

• organizations:DescribeOrganization (console only)

• organizations:ListAccounts (console only)

AWS Management Console

To view details of an AWS account

When signed in to the organization's management account in the AWS Organizations console, you can view details about your accounts.

1. Sign in to the Organizations console at https://console.aws.amazon.com/organizations/. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization's management account.

2. Do one of the following:

   • On the Accounts tab, choose the account that you want to examine.

   • On the Organize accounts tab, navigate to and then choose an account card.

   The Account summary pane on the right side of the page shows details of the selected account.

Note

By default, failed account creation requests are available for 90 days and hidden on the Accounts tab. To view a list that includes failed account creation requests, choose the switch at the top to change it to Show.

To view details of an account

You can use one of the following commands to view details of an account:

• AWS CLI: aws organizations describe-account

• AWS API: DescribeAccount

Viewing details of a policy

Minimum permissions

To view the details of a policy, you must have the following permissions:

• organizations:DescribePolicy

• organizations:ListPolicies

AWS Management Console

To view details of a policy

When signed in to the organization's management account in the AWS Organizations console, you can view details about your policies.

1. Sign in to the Organizations console at https://console.aws.amazon.com/organizations/. You must sign in as an IAM user, assume an IAM role, or sign in as the root user (not recommended) in the organization's management account.

2. On the Policies tab, choose the policy that you want to examine.

3. Choose View policy details in the pane on the right side of the page.

AWS CLI, AWS API

To view details of a policy

You can use one of the following commands to view details of a policy:

• AWS CLI: aws organizations describe-policy

• AWS API: DescribePolicy