IAM / Client / enable_organizations_root_credentials_management
enable_organizations_root_credentials_management#
- IAM.Client.enable_organizations_root_credentials_management()#
Enables the management of privileged root user credentials across member accounts in your organization. When you enable root credentials management for centralized root access, the management account and the delegated admininstrator for IAM can manage root user credentials for member accounts in your organization.
Before you enable centralized root access, you must have an account configured with the following settings:
You must manage your Amazon Web Services accounts in Organizations.
Enable trusted access for Identity and Access Management in Organizations. For details, see IAM and Organizations in the Organizations User Guide.
See also: AWS API Documentation
Request Syntax
response = client.enable_organizations_root_credentials_management()
- Return type:
dict
- Returns:
Response Syntax
{ 'OrganizationId': 'string', 'EnabledFeatures': [ 'RootCredentialsManagement'|'RootSessions', ] }
Response Structure
(dict) –
OrganizationId (string) –
The unique identifier (ID) of an organization.
EnabledFeatures (list) –
The features you have enabled for centralized root access.
(string) –
Exceptions
IAM.Client.exceptions.ServiceAccessNotEnabledExceptionIAM.Client.exceptions.AccountNotManagementOrDelegatedAdministratorExceptionIAM.Client.exceptions.OrganizationNotFoundExceptionIAM.Client.exceptions.OrganizationNotInAllFeaturesModeExceptionIAM.Client.exceptions.CallerIsNotManagementAccountException