- 최신
- 최다 투표
- 가장 많은 댓글
The root user of the child account doesn't have permission (organizations:DescribeOrganization) to the organization. You need to sign in as an IAM user, assume in IAM role, or sign in as the root user (not recommended) in the management account to view it.
Hi there.
The problem in this case is that by default, the organization in AWS Organizations is only accessible from the management account. To allow a member account to see or manage the organization, you need to grant permissions to the account by making it a Delegated administrator for AWS Organizations [1]. In fact, this is the recommended approach so that you have an AWS account that manages the organization as opposed to using the management account.
I hope this helps.
[1] https://docs.aws.amazon.com/organizations/latest/userguide/orgs_delegate_policies.html
I am already logging in as the root user of the child account.
You need to log into the Organization Management account, not the child account.