AWS CloudFormation

Activate trusted access with Organizations. With trusted access between StackSets and Organizations activated, the management account has permissions to create and manage StackSets for your organization.

See also: AWS API Documentation

Request Syntax

client.activate_organizations_access()

rtype

dict

returns

Response Syntax

{}

Response Structure

• (dict) --

Deactivates trusted access with Organizations. If trusted access is deactivated, the management account does not have permissions to create and manage service-managed StackSets for your organization.

See also: AWS API Documentation

Request Syntax

client.deactivate_organizations_access()

rtype

dict

returns

Response Syntax

{}

Response Structure

• (dict) --

Retrieves information about the account's OrganizationAccess status. This API can be called either by the management account or the delegated administrator by using the CallAs parameter. This API can also be called without the CallAs parameter by the management account.

See also: AWS API Documentation

Request Syntax

client.describe_organizations_access(
    CallAs='SELF'|'DELEGATED_ADMIN'
)

type CallAs

string

param CallAs

[Service-managed permissions] Specifies whether you are acting as an account administrator in the organization's management account or as a delegated administrator in a member account.

By default, SELF is specified.

• If you are signed in to the management account, specify SELF .

• If you are signed in to a delegated administrator account, specify DELEGATED_ADMIN . Your Amazon Web Services account must be registered as a delegated administrator in the management account. For more information, see Register a delegated administrator in the CloudFormation User Guide .

rtype

dict

returns

Response Syntax

{
    'Status': 'ENABLED'|'DISABLED'|'DISABLED_PERMANENTLY'
}

Response Structure

• (dict) --

  • Status (string) --

    Presents the status of the OrganizationAccess .