/* * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. * * Licensed under the Apache License, Version 2.0 (the "License"). * You may not use this file except in compliance with the License. * A copy of the License is located at * * http://aws.amazon.com/apache2.0 * * or in the "license" file accompanying this file. This file is distributed * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either * express or implied. See the License for the specific language governing * permissions and limitations under the License. */ /* * Do not modify this file. This file is generated from the organizations-2016-11-28.normal.json service model. */ using System; using System.Collections.Generic; using Amazon.Runtime; using Amazon.Organizations.Model; namespace Amazon.Organizations { ///

/// Interface for accessing Organizations /// /// Organizations is a web service that enables you to consolidate your multiple Amazon /// Web Services accounts into an organization and centrally manage your accounts /// and their resources. /// /// /// /// This guide provides descriptions of the Organizations operations. For more information /// about using this service, see the Organizations /// User Guide. /// /// /// /// Support and feedback for Organizations /// /// /// /// We welcome your feedback. Send your comments to feedback-awsorganizations@amazon.com /// or post your feedback and questions in the Organizations /// support forum. For more information about the Amazon Web Services support forums, /// see Forums Help. /// /// /// /// Endpoint to call When using the CLI or the Amazon Web Services SDK /// /// /// /// For the current release of Organizations, specify the us-east-1 region /// for all Amazon Web Services API and CLI calls made from the commercial Amazon Web /// Services Regions outside of China. If calling from one of the Amazon Web Services /// Regions in China, then specify cn-northwest-1. You can do this in the /// CLI by using these parameters and commands: /// ///

/// /// Use the following parameter with each command to specify both the endpoint and its /// region: /// /// /// /// --endpoint-url https://organizations.us-east-1.amazonaws.com (from /// commercial Amazon Web Services Regions outside of China) /// /// /// /// or /// /// /// /// --endpoint-url https://organizations.cn-northwest-1.amazonaws.com.cn /// (from Amazon Web Services Regions in China) /// ///
/// /// Use the default endpoint, but configure your default region with this command: /// /// /// /// aws configure set default.region us-east-1 (from commercial Amazon /// Web Services Regions outside of China) /// /// /// /// or /// /// /// /// aws configure set default.region cn-northwest-1 (from Amazon Web /// Services Regions in China) /// ///
/// /// Use the following parameter with each command to specify the endpoint: /// /// /// /// --region us-east-1 (from commercial Amazon Web Services Regions outside /// of China) /// /// /// /// or /// /// /// /// --region cn-northwest-1 (from Amazon Web Services Regions in China) /// /// ///

/// /// Recording API Requests /// /// /// /// Organizations supports CloudTrail, a service that records Amazon Web Services API /// calls for your Amazon Web Services account and delivers log files to an Amazon S3 /// bucket. By using information collected by CloudTrail, you can determine which requests /// the Organizations service received, who made the request and when, and so on. For /// more about Organizations and its support for CloudTrail, see Logging /// Organizations Events with CloudTrail in the Organizations User Guide. To /// learn more about CloudTrail, including how to turn it on and find your log files, /// see the CloudTrail /// User Guide. /// ///

public partial interface IAmazonOrganizations : IAmazonService, IDisposable { #if BCL45 || AWS_ASYNC_ENUMERABLES_API ///

/// Paginators for the service ///

IOrganizationsPaginatorFactory Paginators { get; } #endif #region AcceptHandshake ///

/// Sends a response to the originator of a handshake agreeing to the action proposed /// by the handshake request. /// /// /// /// You can only call this operation by the following principals when they also have the /// relevant IAM permissions: /// ///

/// /// Invitation to join or Approve all features request handshakes: only /// a principal from the member account. /// /// /// /// The user who calls the API for an invitation to join must have the organizations:AcceptHandshake /// permission. If you enabled all features in the organization, the user must also have /// the iam:CreateServiceLinkedRole permission so that Organizations can /// create the required service-linked role named AWSServiceRoleForOrganizations. /// For more information, see Organizations /// and Service-Linked Roles in the Organizations User Guide. /// ///
/// /// Enable all features final confirmation handshake: only a principal from the /// management account. /// /// /// /// For more information about invitations, see Inviting /// an Amazon Web Services account to join your organization in the Organizations /// User Guide. For more information about requests to enable all features in the /// organization, see Enabling /// all features in your organization in the Organizations User Guide. /// ///

/// /// After you accept a handshake, it continues to appear in the results of relevant APIs /// for only 30 days. After that, it's deleted. /// ///

/// Container for the necessary parameters to execute the AcceptHandshake service method. /// /// The response from the AcceptHandshake service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The operation that you attempted requires you to have the iam:CreateServiceLinkedRole /// for organizations.amazonaws.com permission so that Organizations can /// create the required service-linked role. You don't have that permission. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The specified handshake is already in the requested state. For example, you can't /// accept a handshake that was already accepted. /// /// /// The requested operation would violate the constraint identified in the reason code. /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation: /// ///

/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. Note that deleted and closed accounts still count toward /// your limit. /// /// /// /// If you get this exception immediately after creating the organization, wait one hour /// and try again. If after an hour it continues to fail with this error, contact Amazon /// Web Services Support. /// ///
/// /// ALREADY_IN_AN_ORGANIZATION: The handshake request is invalid because the invited account /// is already a member of an organization. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVITE_DISABLED_DURING_ENABLE_ALL_FEATURES: You can't issue new invitations to join /// an organization while it's in the process of enabling all features. You can resume /// inviting accounts after you finalize the process when all accounts have agreed to /// the change. /// ///
/// /// ORGANIZATION_ALREADY_HAS_ALL_FEATURES: The handshake request is invalid because the /// organization has already enabled all features. /// ///
/// /// ORGANIZATION_IS_ALREADY_PENDING_ALL_FEATURES_MIGRATION: The handshake request is invalid /// because the organization has already started the process to enable all features. /// ///
/// /// ORGANIZATION_FROM_DIFFERENT_SELLER_OF_RECORD: The request failed because the account /// is from a different marketplace than the accounts in the organization. For example, /// accounts with India addresses must be associated with the AISPL marketplace. All accounts /// in an organization must be from the same marketplace. /// ///
/// /// ORGANIZATION_MEMBERSHIP_CHANGE_RATE_LIMIT_EXCEEDED: You attempted to change the membership /// of an account too quickly after its previous change. /// ///
/// /// PAYMENT_INSTRUMENT_REQUIRED: You can't complete the operation with an account that /// doesn't have a payment instrument, such as a credit card, associated with it. /// ///

/// /// /// We can't find a handshake with the HandshakeId that you specified. /// /// /// You can't perform the operation on the handshake in its current state. For example, /// you can't cancel a handshake that was already accepted or accept a handshake that /// was already declined. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for AcceptHandshake Operation AcceptHandshakeResponse AcceptHandshake(AcceptHandshakeRequest request); ///

/// Initiates the asynchronous execution of the AcceptHandshake operation. ///

/// /// Container for the necessary parameters to execute the AcceptHandshake operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndAcceptHandshake /// operation. /// REST API Reference for AcceptHandshake Operation IAsyncResult BeginAcceptHandshake(AcceptHandshakeRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the AcceptHandshake operation. ///

/// /// The IAsyncResult returned by the call to BeginAcceptHandshake. /// /// Returns a AcceptHandshakeResult from Organizations. /// REST API Reference for AcceptHandshake Operation AcceptHandshakeResponse EndAcceptHandshake(IAsyncResult asyncResult); #endregion #region AttachPolicy ///

/// Attaches a policy to a root, an organizational unit (OU), or an individual account. /// How the policy affects accounts depends on the type of policy. Refer to the Organizations /// User Guide for information about each policy type: /// ///

/// /// AISERVICES_OPT_OUT_POLICY /// /// ///
/// /// BACKUP_POLICY /// /// ///
/// /// SERVICE_CONTROL_POLICY /// /// ///
/// /// TAG_POLICY /// /// ///

/// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the AttachPolicy service method. /// /// The response from the AttachPolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// The selected policy is already attached to the specified target. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Changes to the effective policy are in progress, and its contents can't be returned. /// Try the operation again later. /// /// /// We can't find a policy with the PolicyId that you specified. /// /// /// The specified policy type isn't currently enabled in this root. You can't attach policies /// of the specified type to entities in a root until you enable that type in the root. /// For more information, see Enabling /// All Features in Your Organization in the Organizations User Guide. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for AttachPolicy Operation AttachPolicyResponse AttachPolicy(AttachPolicyRequest request); ///

/// Initiates the asynchronous execution of the AttachPolicy operation. ///

/// /// Container for the necessary parameters to execute the AttachPolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndAttachPolicy /// operation. /// REST API Reference for AttachPolicy Operation IAsyncResult BeginAttachPolicy(AttachPolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the AttachPolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginAttachPolicy. /// /// Returns a AttachPolicyResult from Organizations. /// REST API Reference for AttachPolicy Operation AttachPolicyResponse EndAttachPolicy(IAsyncResult asyncResult); #endregion #region CancelHandshake ///

/// Cancels a handshake. Canceling a handshake sets the handshake state to CANCELED. /// /// /// /// This operation can be called only from the account that originated the handshake. /// The recipient of the handshake can't cancel it, but can use DeclineHandshake /// instead. After a handshake is canceled, the recipient can no longer respond to that /// handshake. /// /// /// /// After you cancel a handshake, it continues to appear in the results of relevant APIs /// for only 30 days. After that, it's deleted. /// ///

/// Container for the necessary parameters to execute the CancelHandshake service method. /// /// The response from the CancelHandshake service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The specified handshake is already in the requested state. For example, you can't /// accept a handshake that was already accepted. /// /// /// We can't find a handshake with the HandshakeId that you specified. /// /// /// You can't perform the operation on the handshake in its current state. For example, /// you can't cancel a handshake that was already accepted or accept a handshake that /// was already declined. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for CancelHandshake Operation CancelHandshakeResponse CancelHandshake(CancelHandshakeRequest request); ///

/// Initiates the asynchronous execution of the CancelHandshake operation. ///

/// /// Container for the necessary parameters to execute the CancelHandshake operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCancelHandshake /// operation. /// REST API Reference for CancelHandshake Operation IAsyncResult BeginCancelHandshake(CancelHandshakeRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CancelHandshake operation. ///

/// /// The IAsyncResult returned by the call to BeginCancelHandshake. /// /// Returns a CancelHandshakeResult from Organizations. /// REST API Reference for CancelHandshake Operation CancelHandshakeResponse EndCancelHandshake(IAsyncResult asyncResult); #endregion #region CloseAccount ///

/// Closes an Amazon Web Services member account within an organization. You can close /// an account when all /// features are enabled . You can't close the management account with this API. This /// is an asynchronous request that Amazon Web Services performs in the background. Because /// CloseAccount operates asynchronously, it can return a successful completion /// message even though account closure might still be in progress. You need to wait a /// few minutes before the account is fully closed. To check the status of the request, /// do one of the following: /// ///

/// /// Use the AccountId that you sent in the CloseAccount request /// to provide as a parameter to the DescribeAccount operation. /// /// /// /// While the close account request is in progress, Account status will indicate PENDING_CLOSURE. /// When the close account request completes, the status will change to SUSPENDED. /// ///
/// /// Check the CloudTrail log for the CloseAccountResult event that gets published /// after the account closes successfully. For information on using CloudTrail with Organizations, /// see Logging /// and monitoring in Organizations in the Organizations User Guide. /// ///

/// /// You can close only 10% of member accounts, between 10 and 200, within a rolling 30 /// day period. This quota is not bound by a calendar month, but starts when you close /// an account. /// /// /// /// After you reach this limit, you can close additional accounts in the Billing console. /// For more information, see Closing /// an account in the Amazon Web Services Billing and Cost Management User Guide. /// ///
/// /// To reinstate a closed account, contact Amazon Web Services Support within the 90-day /// grace period while the account is in SUSPENDED status. /// ///
/// /// If the Amazon Web Services account you attempt to close is linked to an Amazon Web /// Services GovCloud (US) account, the CloseAccount request will close both /// accounts. To learn important pre-closure details, see /// Closing an Amazon Web Services GovCloud (US) account in the Amazon Web Services /// GovCloud User Guide. /// ///

/// /// For more information about closing accounts, see Closing /// an Amazon Web Services account in the Organizations User Guide. /// ///

/// Container for the necessary parameters to execute the CloseAccount service method. /// /// The response from the CloseAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// You attempted to close an account that is already closed. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The request failed because it conflicts with the current state of the specified resource. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for CloseAccount Operation CloseAccountResponse CloseAccount(CloseAccountRequest request); ///

/// Initiates the asynchronous execution of the CloseAccount operation. ///

/// /// Container for the necessary parameters to execute the CloseAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCloseAccount /// operation. /// REST API Reference for CloseAccount Operation IAsyncResult BeginCloseAccount(CloseAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CloseAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginCloseAccount. /// /// Returns a CloseAccountResult from Organizations. /// REST API Reference for CloseAccount Operation CloseAccountResponse EndCloseAccount(IAsyncResult asyncResult); #endregion #region CreateAccount ///

/// Creates an Amazon Web Services account that is automatically a member of the organization /// whose credentials made the request. This is an asynchronous request that Amazon Web /// Services performs in the background. Because CreateAccount operates asynchronously, /// it can return a successful completion message even though account initialization might /// still be in progress. You might need to wait a few minutes before you can successfully /// access the account. To check the status of the request, do one of the following: /// ///

/// /// Use the Id value of the CreateAccountStatus response element /// from this operation to provide as a parameter to the DescribeCreateAccountStatus /// operation. /// ///
/// /// Check the CloudTrail log for the CreateAccountResult event. For information /// on using CloudTrail with Organizations, see Logging /// and monitoring in Organizations in the Organizations User Guide. /// ///

/// /// The user who calls the API to create an account must have the organizations:CreateAccount /// permission. If you enabled all features in the organization, Organizations creates /// the required service-linked role named AWSServiceRoleForOrganizations. /// For more information, see Organizations /// and Service-Linked Roles in the Organizations User Guide. /// /// /// /// If the request includes tags, then the requester must have the organizations:TagResource /// permission. /// /// /// /// Organizations preconfigures the new member account with a role (named OrganizationAccountAccessRole /// by default) that grants users in the management account administrator permissions /// in the new member account. Principals in the management account can assume the role. /// Organizations clones the company name and address information for the new account /// from the organization's management account. /// /// /// /// This operation can be called only from the organization's management account. /// /// /// /// For more information about creating accounts, see Creating /// an Amazon Web Services account in Your Organization in the Organizations User /// Guide. /// ///

/// /// When you create an account in an organization using the Organizations console, API, /// or CLI commands, the information required for the account to operate as a standalone /// account, such as a payment method and signing the end user license agreement (EULA) /// is not automatically collected. If you must remove an account from your organization /// later, you can do so only after you provide the missing information. Follow the steps /// at /// To leave an organization as a member account in the Organizations User Guide. /// ///
/// /// If you get an exception that indicates that you exceeded your account limits for the /// organization, contact Amazon /// Web Services Support. /// ///
/// /// If you get an exception that indicates that the operation failed because your organization /// is still initializing, wait one hour and then try again. If the error persists, contact /// Amazon Web Services Support. /// ///
/// /// Using CreateAccount to create multiple temporary accounts isn't recommended. /// You can only close an account from the Billing and Cost Management console, and you /// must be signed in as the root user. For information on the requirements and process /// for closing an account, see Closing /// an Amazon Web Services account in the Organizations User Guide. /// ///

/// /// When you create a member account with this operation, you can choose whether to create /// the account with the IAM User and Role Access to Billing Information switch /// enabled. If you enable it, IAM users and roles that have appropriate permissions can /// view billing information for the account. If you disable it, only the account root /// user can access billing information. For information about how to disable this switch /// for an account, see Granting /// Access to Your Billing Information and Tools. /// /// ///

/// Container for the necessary parameters to execute the CreateAccount service method. /// /// The response from the CreateAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// Organizations couldn't perform the operation because your organization hasn't finished /// initializing. This can take up to an hour. Try again later. If after one hour you /// continue to receive this error, contact Amazon /// Web Services Support. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for CreateAccount Operation CreateAccountResponse CreateAccount(CreateAccountRequest request); ///

/// Initiates the asynchronous execution of the CreateAccount operation. ///

/// /// Container for the necessary parameters to execute the CreateAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCreateAccount /// operation. /// REST API Reference for CreateAccount Operation IAsyncResult BeginCreateAccount(CreateAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CreateAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginCreateAccount. /// /// Returns a CreateAccountResult from Organizations. /// REST API Reference for CreateAccount Operation CreateAccountResponse EndCreateAccount(IAsyncResult asyncResult); #endregion #region CreateGovCloudAccount ///

/// This action is available if all of the following are true: /// ///

/// /// You're authorized to create accounts in the Amazon Web Services GovCloud (US) Region. /// For more information on the Amazon Web Services GovCloud (US) Region, see the /// Amazon Web Services GovCloud User Guide. /// ///
/// /// You already have an account in the Amazon Web Services GovCloud (US) Region that is /// paired with a management account of an organization in the commercial Region. /// ///
/// /// You call this action from the management account of your organization in the commercial /// Region. /// ///
/// /// You have the organizations:CreateGovCloudAccount permission. /// ///

/// /// Organizations automatically creates the required service-linked role named AWSServiceRoleForOrganizations. /// For more information, see Organizations /// and Service-Linked Roles in the Organizations User Guide. /// /// /// /// Amazon Web Services automatically enables CloudTrail for Amazon Web Services GovCloud /// (US) accounts, but you should also do the following: /// ///

/// /// Verify that CloudTrail is enabled to store logs. /// ///
/// /// Create an Amazon S3 bucket for CloudTrail log storage. /// /// /// /// For more information, see Verifying /// CloudTrail Is Enabled in the Amazon Web Services GovCloud User Guide. /// ///

/// /// If the request includes tags, then the requester must have the organizations:TagResource /// permission. The tags are attached to the commercial account associated with the GovCloud /// account, rather than the GovCloud account itself. To add tags to the GovCloud account, /// call the TagResource operation in the GovCloud Region after the new GovCloud /// account exists. /// /// /// /// You call this action from the management account of your organization in the commercial /// Region to create a standalone Amazon Web Services account in the Amazon Web Services /// GovCloud (US) Region. After the account is created, the management account of an organization /// in the Amazon Web Services GovCloud (US) Region can invite it to that organization. /// For more information on inviting standalone accounts in the Amazon Web Services GovCloud /// (US) to join an organization, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// /// /// /// Calling CreateGovCloudAccount is an asynchronous request that Amazon /// Web Services performs in the background. Because CreateGovCloudAccount /// operates asynchronously, it can return a successful completion message even though /// account initialization might still be in progress. You might need to wait a few minutes /// before you can successfully access the account. To check the status of the request, /// do one of the following: /// ///

/// /// Use the OperationId response element from this operation to provide as /// a parameter to the DescribeCreateAccountStatus operation. /// ///
/// /// Check the CloudTrail log for the CreateAccountResult event. For information /// on using CloudTrail with Organizations, see Monitoring /// the Activity in Your Organization in the Organizations User Guide. /// ///

/// /// When you call the CreateGovCloudAccount action, you create two accounts: /// a standalone account in the Amazon Web Services GovCloud (US) Region and an associated /// account in the commercial Region for billing and support purposes. The account in /// the commercial Region is automatically a member of the organization whose credentials /// made the request. Both accounts are associated with the same email address. /// /// /// /// A role is created in the new account in the commercial Region that allows the management /// account in the organization in the commercial Region to assume it. An Amazon Web Services /// GovCloud (US) account is then created and associated with the commercial account that /// you just created. A role is also created in the new Amazon Web Services GovCloud (US) /// account that can be assumed by the Amazon Web Services GovCloud (US) account that /// is associated with the management account of the commercial organization. For more /// information and to view a diagram that explains how account access works, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// /// /// /// For more information about creating accounts, see Creating /// an Amazon Web Services account in Your Organization in the Organizations User /// Guide. /// ///

/// /// When you create an account in an organization using the Organizations console, API, /// or CLI commands, the information required for the account to operate as a standalone /// account is not automatically collected. This includes a payment method and /// signing the end user license agreement (EULA). If you must remove an account from /// your organization later, you can do so only after you provide the missing information. /// Follow the steps at /// To leave an organization as a member account in the Organizations User Guide. /// /// ///
/// /// If you get an exception that indicates that you exceeded your account limits for the /// organization, contact Amazon /// Web Services Support. /// ///
/// /// If you get an exception that indicates that the operation failed because your organization /// is still initializing, wait one hour and then try again. If the error persists, contact /// Amazon Web Services Support. /// ///
/// /// Using CreateGovCloudAccount to create multiple temporary accounts isn't /// recommended. You can only close an account from the Amazon Web Services Billing and /// Cost Management console, and you must be signed in as the root user. For information /// on the requirements and process for closing an account, see Closing /// an Amazon Web Services account in the Organizations User Guide. /// ///

/// Container for the necessary parameters to execute the CreateGovCloudAccount service method. /// /// The response from the CreateGovCloudAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for CreateGovCloudAccount Operation CreateGovCloudAccountResponse CreateGovCloudAccount(CreateGovCloudAccountRequest request); ///

/// Initiates the asynchronous execution of the CreateGovCloudAccount operation. ///

/// /// Container for the necessary parameters to execute the CreateGovCloudAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCreateGovCloudAccount /// operation. /// REST API Reference for CreateGovCloudAccount Operation IAsyncResult BeginCreateGovCloudAccount(CreateGovCloudAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CreateGovCloudAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginCreateGovCloudAccount. /// /// Returns a CreateGovCloudAccountResult from Organizations. /// REST API Reference for CreateGovCloudAccount Operation CreateGovCloudAccountResponse EndCreateGovCloudAccount(IAsyncResult asyncResult); #endregion #region CreateOrganization ///

/// Creates an Amazon Web Services organization. The account whose user is calling the /// CreateOrganization operation automatically becomes the management /// account of the new organization. /// /// /// /// This operation must be called using credentials from the account that is to become /// the new organization's management account. The principal must also have the relevant /// IAM permissions. /// /// /// /// By default (or if you set the FeatureSet parameter to ALL), /// the new organization is created with all features enabled and service control policies /// automatically enabled in the root. If you instead choose to create the organization /// supporting only the consolidated billing features by setting the FeatureSet /// parameter to CONSOLIDATED_BILLING", no policy types are enabled by default, /// and you can't use organization policies /// ///

/// Container for the necessary parameters to execute the CreateOrganization service method. /// /// The response from the CreateOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The operation that you attempted requires you to have the iam:CreateServiceLinkedRole /// for organizations.amazonaws.com permission so that Organizations can /// create the required service-linked role. You don't have that permission. /// /// /// This account is already a member of an organization. An account can belong to only /// one organization at a time. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for CreateOrganization Operation CreateOrganizationResponse CreateOrganization(CreateOrganizationRequest request); ///

/// Initiates the asynchronous execution of the CreateOrganization operation. ///

/// /// Container for the necessary parameters to execute the CreateOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCreateOrganization /// operation. /// REST API Reference for CreateOrganization Operation IAsyncResult BeginCreateOrganization(CreateOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CreateOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginCreateOrganization. /// /// Returns a CreateOrganizationResult from Organizations. /// REST API Reference for CreateOrganization Operation CreateOrganizationResponse EndCreateOrganization(IAsyncResult asyncResult); #endregion #region CreateOrganizationalUnit ///

/// Creates an organizational unit (OU) within a root or parent OU. An OU is a container /// for accounts that enables you to organize your accounts to apply policies according /// to your business requirements. The number of levels deep that you can nest OUs is /// dependent upon the policy types enabled for that root. For service control policies, /// the limit is five. /// /// /// /// For more information about OUs, see Managing /// Organizational Units in the Organizations User Guide. /// /// /// /// If the request includes tags, then the requester must have the organizations:TagResource /// permission. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the CreateOrganizationalUnit service method. /// /// The response from the CreateOrganizationalUnit service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// An OU with the same name already exists. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find a root or OU with the ParentId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for CreateOrganizationalUnit Operation CreateOrganizationalUnitResponse CreateOrganizationalUnit(CreateOrganizationalUnitRequest request); ///

/// Initiates the asynchronous execution of the CreateOrganizationalUnit operation. ///

/// /// Container for the necessary parameters to execute the CreateOrganizationalUnit operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCreateOrganizationalUnit /// operation. /// REST API Reference for CreateOrganizationalUnit Operation IAsyncResult BeginCreateOrganizationalUnit(CreateOrganizationalUnitRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CreateOrganizationalUnit operation. ///

/// /// The IAsyncResult returned by the call to BeginCreateOrganizationalUnit. /// /// Returns a CreateOrganizationalUnitResult from Organizations. /// REST API Reference for CreateOrganizationalUnit Operation CreateOrganizationalUnitResponse EndCreateOrganizationalUnit(IAsyncResult asyncResult); #endregion #region CreatePolicy ///

/// Creates a policy of a specified type that you can attach to a root, an organizational /// unit (OU), or an individual Amazon Web Services account. /// /// /// /// For more information about policies and their use, see Managing /// Organization Policies. /// /// /// /// If the request includes tags, then the requester must have the organizations:TagResource /// permission. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the CreatePolicy service method. /// /// The response from the CreatePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// A policy with the same name already exists. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// The provided policy document doesn't meet the requirements of the specified policy /// type. For example, the syntax might be incorrect. For details about service control /// policy syntax, see Service /// Control Policy Syntax in the Organizations User Guide. /// /// /// You can't use the specified policy type with the feature set currently enabled for /// this organization. For example, you can enable SCPs only after you enable all features /// in the organization. For more information, see Managing /// Organizations Policiesin the Organizations User Guide. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for CreatePolicy Operation CreatePolicyResponse CreatePolicy(CreatePolicyRequest request); ///

/// Initiates the asynchronous execution of the CreatePolicy operation. ///

/// /// Container for the necessary parameters to execute the CreatePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndCreatePolicy /// operation. /// REST API Reference for CreatePolicy Operation IAsyncResult BeginCreatePolicy(CreatePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the CreatePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginCreatePolicy. /// /// Returns a CreatePolicyResult from Organizations. /// REST API Reference for CreatePolicy Operation CreatePolicyResponse EndCreatePolicy(IAsyncResult asyncResult); #endregion #region DeclineHandshake ///

/// Declines a handshake request. This sets the handshake state to DECLINED /// and effectively deactivates the request. /// /// /// /// This operation can be called only from the account that received the handshake. The /// originator of the handshake can use CancelHandshake instead. The originator /// can't reactivate a declined request, but can reinitiate the process with a new handshake /// request. /// /// /// /// After you decline a handshake, it continues to appear in the results of relevant APIs /// for only 30 days. After that, it's deleted. /// ///

/// Container for the necessary parameters to execute the DeclineHandshake service method. /// /// The response from the DeclineHandshake service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The specified handshake is already in the requested state. For example, you can't /// accept a handshake that was already accepted. /// /// /// We can't find a handshake with the HandshakeId that you specified. /// /// /// You can't perform the operation on the handshake in its current state. For example, /// you can't cancel a handshake that was already accepted or accept a handshake that /// was already declined. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DeclineHandshake Operation DeclineHandshakeResponse DeclineHandshake(DeclineHandshakeRequest request); ///

/// Initiates the asynchronous execution of the DeclineHandshake operation. ///

/// /// Container for the necessary parameters to execute the DeclineHandshake operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDeclineHandshake /// operation. /// REST API Reference for DeclineHandshake Operation IAsyncResult BeginDeclineHandshake(DeclineHandshakeRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DeclineHandshake operation. ///

/// /// The IAsyncResult returned by the call to BeginDeclineHandshake. /// /// Returns a DeclineHandshakeResult from Organizations. /// REST API Reference for DeclineHandshake Operation DeclineHandshakeResponse EndDeclineHandshake(IAsyncResult asyncResult); #endregion #region DeleteOrganization ///

/// Deletes the organization. You can delete an organization only by using credentials /// from the management account. The organization must be empty of member accounts. ///

/// Container for the necessary parameters to execute the DeleteOrganization service method. /// /// The response from the DeleteOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// The organization isn't empty. To delete an organization, you must first remove all /// accounts except the management account, delete all OUs, and delete all policies. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DeleteOrganization Operation DeleteOrganizationResponse DeleteOrganization(DeleteOrganizationRequest request); ///

/// Initiates the asynchronous execution of the DeleteOrganization operation. ///

/// /// Container for the necessary parameters to execute the DeleteOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDeleteOrganization /// operation. /// REST API Reference for DeleteOrganization Operation IAsyncResult BeginDeleteOrganization(DeleteOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DeleteOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginDeleteOrganization. /// /// Returns a DeleteOrganizationResult from Organizations. /// REST API Reference for DeleteOrganization Operation DeleteOrganizationResponse EndDeleteOrganization(IAsyncResult asyncResult); #endregion #region DeleteOrganizationalUnit ///

/// Deletes an organizational unit (OU) from a root or another OU. You must first remove /// all accounts and child OUs from the OU that you want to delete. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the DeleteOrganizationalUnit service method. /// /// The response from the DeleteOrganizationalUnit service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// The specified OU is not empty. Move all accounts to another root or to other OUs, /// remove all child OUs, and try the operation again. /// /// /// We can't find an OU with the OrganizationalUnitId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DeleteOrganizationalUnit Operation DeleteOrganizationalUnitResponse DeleteOrganizationalUnit(DeleteOrganizationalUnitRequest request); ///

/// Initiates the asynchronous execution of the DeleteOrganizationalUnit operation. ///

/// /// Container for the necessary parameters to execute the DeleteOrganizationalUnit operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDeleteOrganizationalUnit /// operation. /// REST API Reference for DeleteOrganizationalUnit Operation IAsyncResult BeginDeleteOrganizationalUnit(DeleteOrganizationalUnitRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DeleteOrganizationalUnit operation. ///

/// /// The IAsyncResult returned by the call to BeginDeleteOrganizationalUnit. /// /// Returns a DeleteOrganizationalUnitResult from Organizations. /// REST API Reference for DeleteOrganizationalUnit Operation DeleteOrganizationalUnitResponse EndDeleteOrganizationalUnit(IAsyncResult asyncResult); #endregion #region DeletePolicy ///

/// Deletes the specified policy from your organization. Before you perform this operation, /// you must first detach the policy from all organizational units (OUs), roots, and accounts. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the DeletePolicy service method. /// /// The response from the DeletePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// The policy is attached to one or more entities. You must detach it from all roots, /// OUs, and accounts before performing this operation. /// /// /// We can't find a policy with the PolicyId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DeletePolicy Operation DeletePolicyResponse DeletePolicy(DeletePolicyRequest request); ///

/// Initiates the asynchronous execution of the DeletePolicy operation. ///

/// /// Container for the necessary parameters to execute the DeletePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDeletePolicy /// operation. /// REST API Reference for DeletePolicy Operation IAsyncResult BeginDeletePolicy(DeletePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DeletePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginDeletePolicy. /// /// Returns a DeletePolicyResult from Organizations. /// REST API Reference for DeletePolicy Operation DeletePolicyResponse EndDeletePolicy(IAsyncResult asyncResult); #endregion #region DeleteResourcePolicy ///

/// Deletes the resource policy from your organization. /// /// /// /// You can only call this operation from the organization's management account. /// ///

/// Container for the necessary parameters to execute the DeleteResourcePolicy service method. /// /// The response from the DeleteResourcePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// We can't find a resource policy request with the parameter that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DeleteResourcePolicy Operation DeleteResourcePolicyResponse DeleteResourcePolicy(DeleteResourcePolicyRequest request); ///

/// Initiates the asynchronous execution of the DeleteResourcePolicy operation. ///

/// /// Container for the necessary parameters to execute the DeleteResourcePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDeleteResourcePolicy /// operation. /// REST API Reference for DeleteResourcePolicy Operation IAsyncResult BeginDeleteResourcePolicy(DeleteResourcePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DeleteResourcePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginDeleteResourcePolicy. /// /// Returns a DeleteResourcePolicyResult from Organizations. /// REST API Reference for DeleteResourcePolicy Operation DeleteResourcePolicyResponse EndDeleteResourcePolicy(IAsyncResult asyncResult); #endregion #region DeregisterDelegatedAdministrator ///

/// Removes the specified member Amazon Web Services account as a delegated administrator /// for the specified Amazon Web Services service. /// /// /// /// Deregistering a delegated administrator can have unintended impacts on the functionality /// of the enabled Amazon Web Services service. See the documentation for the enabled /// service before you deregister a delegated administrator so that you understand any /// potential impacts. /// /// /// /// You can run this action only for Amazon Web Services services that support this feature. /// For a current list of services that support it, see the column Supports Delegated /// Administrator in the table at Amazon /// Web Services Services that you can use with Organizations in the Organizations /// User Guide. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the DeregisterDelegatedAdministrator service method. /// /// The response from the DeregisterDelegatedAdministrator service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// The specified account is not a delegated administrator for this Amazon Web Services /// service. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DeregisterDelegatedAdministrator Operation DeregisterDelegatedAdministratorResponse DeregisterDelegatedAdministrator(DeregisterDelegatedAdministratorRequest request); ///

/// Initiates the asynchronous execution of the DeregisterDelegatedAdministrator operation. ///

/// /// Container for the necessary parameters to execute the DeregisterDelegatedAdministrator operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDeregisterDelegatedAdministrator /// operation. /// REST API Reference for DeregisterDelegatedAdministrator Operation IAsyncResult BeginDeregisterDelegatedAdministrator(DeregisterDelegatedAdministratorRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DeregisterDelegatedAdministrator operation. ///

/// /// The IAsyncResult returned by the call to BeginDeregisterDelegatedAdministrator. /// /// Returns a DeregisterDelegatedAdministratorResult from Organizations. /// REST API Reference for DeregisterDelegatedAdministrator Operation DeregisterDelegatedAdministratorResponse EndDeregisterDelegatedAdministrator(IAsyncResult asyncResult); #endregion #region DescribeAccount ///

/// Retrieves Organizations-related information about the specified account. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the DescribeAccount service method. /// /// The response from the DescribeAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DescribeAccount Operation DescribeAccountResponse DescribeAccount(DescribeAccountRequest request); ///

/// Initiates the asynchronous execution of the DescribeAccount operation. ///

/// /// Container for the necessary parameters to execute the DescribeAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeAccount /// operation. /// REST API Reference for DescribeAccount Operation IAsyncResult BeginDescribeAccount(DescribeAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeAccount. /// /// Returns a DescribeAccountResult from Organizations. /// REST API Reference for DescribeAccount Operation DescribeAccountResponse EndDescribeAccount(IAsyncResult asyncResult); #endregion #region DescribeCreateAccountStatus ///

/// Retrieves the current status of an asynchronous request to create an account. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the DescribeCreateAccountStatus service method. /// /// The response from the DescribeCreateAccountStatus service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// We can't find an create account request with the CreateAccountRequestId /// that you specified. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DescribeCreateAccountStatus Operation DescribeCreateAccountStatusResponse DescribeCreateAccountStatus(DescribeCreateAccountStatusRequest request); ///

/// Initiates the asynchronous execution of the DescribeCreateAccountStatus operation. ///

/// /// Container for the necessary parameters to execute the DescribeCreateAccountStatus operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeCreateAccountStatus /// operation. /// REST API Reference for DescribeCreateAccountStatus Operation IAsyncResult BeginDescribeCreateAccountStatus(DescribeCreateAccountStatusRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeCreateAccountStatus operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeCreateAccountStatus. /// /// Returns a DescribeCreateAccountStatusResult from Organizations. /// REST API Reference for DescribeCreateAccountStatus Operation DescribeCreateAccountStatusResponse EndDescribeCreateAccountStatus(IAsyncResult asyncResult); #endregion #region DescribeEffectivePolicy ///

/// Returns the contents of the effective policy for specified policy type and account. /// The effective policy is the aggregation of any policies of the specified type that /// the account inherits, plus any policy of that type that is directly attached to the /// account. /// /// /// /// This operation applies only to policy types other than service control policies /// (SCPs). /// /// /// /// For more information about policy inheritance, see How /// Policy Inheritance Works in the Organizations User Guide. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the DescribeEffectivePolicy service method. /// /// The response from the DescribeEffectivePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// If you ran this action on the management account, this policy type is not enabled. /// If you ran the action on a member account, the account doesn't have an effective policy /// of this type. Contact the administrator of your organization about attaching a policy /// of this type to the account. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DescribeEffectivePolicy Operation DescribeEffectivePolicyResponse DescribeEffectivePolicy(DescribeEffectivePolicyRequest request); ///

/// Initiates the asynchronous execution of the DescribeEffectivePolicy operation. ///

/// /// Container for the necessary parameters to execute the DescribeEffectivePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeEffectivePolicy /// operation. /// REST API Reference for DescribeEffectivePolicy Operation IAsyncResult BeginDescribeEffectivePolicy(DescribeEffectivePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeEffectivePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeEffectivePolicy. /// /// Returns a DescribeEffectivePolicyResult from Organizations. /// REST API Reference for DescribeEffectivePolicy Operation DescribeEffectivePolicyResponse EndDescribeEffectivePolicy(IAsyncResult asyncResult); #endregion #region DescribeHandshake ///

/// Retrieves information about a previously requested handshake. The handshake ID comes /// from the response to the original InviteAccountToOrganization operation that /// generated the handshake. /// /// /// /// You can access handshakes that are ACCEPTED, DECLINED, or /// CANCELED for only 30 days after they change to that state. They're then /// deleted and no longer accessible. /// /// /// /// This operation can be called from any account in the organization. /// ///

/// Container for the necessary parameters to execute the DescribeHandshake service method. /// /// The response from the DescribeHandshake service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// We can't find a handshake with the HandshakeId that you specified. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DescribeHandshake Operation DescribeHandshakeResponse DescribeHandshake(DescribeHandshakeRequest request); ///

/// Initiates the asynchronous execution of the DescribeHandshake operation. ///

/// /// Container for the necessary parameters to execute the DescribeHandshake operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeHandshake /// operation. /// REST API Reference for DescribeHandshake Operation IAsyncResult BeginDescribeHandshake(DescribeHandshakeRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeHandshake operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeHandshake. /// /// Returns a DescribeHandshakeResult from Organizations. /// REST API Reference for DescribeHandshake Operation DescribeHandshakeResponse EndDescribeHandshake(IAsyncResult asyncResult); #endregion #region DescribeOrganization ///

/// Retrieves information about the organization that the user's account belongs to. /// /// /// /// This operation can be called from any account in the organization. /// /// /// /// Even if a policy type is shown as available in the organization, you can disable it /// separately at the root level with DisablePolicyType. Use ListRoots to /// see the status of policy types for a specified root. /// /// ///

/// Container for the necessary parameters to execute the DescribeOrganization service method. /// /// The response from the DescribeOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DescribeOrganization Operation DescribeOrganizationResponse DescribeOrganization(DescribeOrganizationRequest request); ///

/// Initiates the asynchronous execution of the DescribeOrganization operation. ///

/// /// Container for the necessary parameters to execute the DescribeOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeOrganization /// operation. /// REST API Reference for DescribeOrganization Operation IAsyncResult BeginDescribeOrganization(DescribeOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeOrganization. /// /// Returns a DescribeOrganizationResult from Organizations. /// REST API Reference for DescribeOrganization Operation DescribeOrganizationResponse EndDescribeOrganization(IAsyncResult asyncResult); #endregion #region DescribeOrganizationalUnit ///

/// Retrieves information about an organizational unit (OU). /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the DescribeOrganizationalUnit service method. /// /// The response from the DescribeOrganizationalUnit service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find an OU with the OrganizationalUnitId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for DescribeOrganizationalUnit Operation DescribeOrganizationalUnitResponse DescribeOrganizationalUnit(DescribeOrganizationalUnitRequest request); ///

/// Initiates the asynchronous execution of the DescribeOrganizationalUnit operation. ///

/// /// Container for the necessary parameters to execute the DescribeOrganizationalUnit operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeOrganizationalUnit /// operation. /// REST API Reference for DescribeOrganizationalUnit Operation IAsyncResult BeginDescribeOrganizationalUnit(DescribeOrganizationalUnitRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeOrganizationalUnit operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeOrganizationalUnit. /// /// Returns a DescribeOrganizationalUnitResult from Organizations. /// REST API Reference for DescribeOrganizationalUnit Operation DescribeOrganizationalUnitResponse EndDescribeOrganizationalUnit(IAsyncResult asyncResult); #endregion #region DescribePolicy ///

/// Retrieves information about a policy. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the DescribePolicy service method. /// /// The response from the DescribePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find a policy with the PolicyId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DescribePolicy Operation DescribePolicyResponse DescribePolicy(DescribePolicyRequest request); ///

/// Initiates the asynchronous execution of the DescribePolicy operation. ///

/// /// Container for the necessary parameters to execute the DescribePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribePolicy /// operation. /// REST API Reference for DescribePolicy Operation IAsyncResult BeginDescribePolicy(DescribePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribePolicy. /// /// Returns a DescribePolicyResult from Organizations. /// REST API Reference for DescribePolicy Operation DescribePolicyResponse EndDescribePolicy(IAsyncResult asyncResult); #endregion #region DescribeResourcePolicy ///

/// Retrieves information about a resource policy. /// /// /// /// You can only call this operation from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the DescribeResourcePolicy service method. /// /// The response from the DescribeResourcePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// We can't find a resource policy request with the parameter that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DescribeResourcePolicy Operation DescribeResourcePolicyResponse DescribeResourcePolicy(DescribeResourcePolicyRequest request); ///

/// Initiates the asynchronous execution of the DescribeResourcePolicy operation. ///

/// /// Container for the necessary parameters to execute the DescribeResourcePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDescribeResourcePolicy /// operation. /// REST API Reference for DescribeResourcePolicy Operation IAsyncResult BeginDescribeResourcePolicy(DescribeResourcePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DescribeResourcePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginDescribeResourcePolicy. /// /// Returns a DescribeResourcePolicyResult from Organizations. /// REST API Reference for DescribeResourcePolicy Operation DescribeResourcePolicyResponse EndDescribeResourcePolicy(IAsyncResult asyncResult); #endregion #region DetachPolicy ///

/// Detaches a policy from a target root, organizational unit (OU), or account. /// /// /// /// If the policy being detached is a service control policy (SCP), the changes to permissions /// for Identity and Access Management (IAM) users and roles in affected accounts are /// immediate. /// /// /// /// Every root, OU, and account must have at least one SCP attached. If you want to replace /// the default FullAWSAccess policy with an SCP that limits the permissions /// that can be delegated, you must attach the replacement SCP before you can remove the /// default SCP. This is the authorization strategy of an "allow /// list". If you instead attach a second SCP and leave the FullAWSAccess /// SCP still attached, and specify "Effect": "Deny" in the second SCP to /// override the "Effect": "Allow" in the FullAWSAccess policy /// (or any other attached SCP), you're using the authorization strategy of a "deny /// list". /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the DetachPolicy service method. /// /// The response from the DetachPolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Changes to the effective policy are in progress, and its contents can't be returned. /// Try the operation again later. /// /// /// The policy isn't attached to the specified target in the specified root. /// /// /// We can't find a policy with the PolicyId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DetachPolicy Operation DetachPolicyResponse DetachPolicy(DetachPolicyRequest request); ///

/// Initiates the asynchronous execution of the DetachPolicy operation. ///

/// /// Container for the necessary parameters to execute the DetachPolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDetachPolicy /// operation. /// REST API Reference for DetachPolicy Operation IAsyncResult BeginDetachPolicy(DetachPolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DetachPolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginDetachPolicy. /// /// Returns a DetachPolicyResult from Organizations. /// REST API Reference for DetachPolicy Operation DetachPolicyResponse EndDetachPolicy(IAsyncResult asyncResult); #endregion #region DisableAWSServiceAccess ///

/// Disables the integration of an Amazon Web Services service (the service that is specified /// by ServicePrincipal) with Organizations. When you disable integration, /// the specified service no longer can create a service-linked /// role in new accounts in your organization. This means the service can't /// perform operations on your behalf on any new accounts in your organization. The service /// can still perform operations in older accounts until the service completes its clean-up /// from Organizations. /// /// /// /// We strongly recommend that you don't use this command to disable integration /// between Organizations and the specified Amazon Web Services service. Instead, use /// the console or commands that are provided by the specified service. This lets the /// trusted service perform any required initialization when enabling trusted access, /// such as creating any required resources and any required clean up of resources when /// disabling trusted access. /// /// /// /// For information about how to disable trusted service access to your organization using /// the trusted service, see the Learn more link under the Supports Trusted /// Access column at Amazon /// Web Services services that you can use with Organizations. on this page. /// /// /// /// If you disable access by using this command, it causes the following actions to occur: /// ///

/// /// The service can no longer create a service-linked role in the accounts in your organization. /// This means that the service can't perform operations on your behalf on any new accounts /// in your organization. The service can still perform operations in older accounts until /// the service completes its clean-up from Organizations. /// ///
/// /// The service can no longer perform tasks in the member accounts in the organization, /// unless those operations are explicitly permitted by the IAM policies that are attached /// to your roles. This includes any data aggregation from the member accounts to the /// management account, or to a delegated administrator account, where relevant. /// ///
/// /// Some services detect this and clean up any remaining data or resources related to /// the integration, while other services stop accessing the organization but leave any /// historical data and configuration in place to support a possible re-enabling of the /// integration. /// ///

/// /// Using the other service's console or commands to disable the integration ensures that /// the other service is aware that it can clean up any resources that are required only /// for the integration. How the service cleans up its resources in the organization's /// accounts depends on that service. For more information, see the documentation for /// the other Amazon Web Services service. /// /// /// /// After you perform the DisableAWSServiceAccess operation, the specified /// service can no longer perform operations in your organization's accounts /// /// /// /// For more information about integrating other services with Organizations, including /// the list of services that work with Organizations, see Integrating /// Organizations with Other Amazon Web Services Services in the Organizations /// User Guide. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the DisableAWSServiceAccess service method. /// /// The response from the DisableAWSServiceAccess service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DisableAWSServiceAccess Operation DisableAWSServiceAccessResponse DisableAWSServiceAccess(DisableAWSServiceAccessRequest request); ///

/// Initiates the asynchronous execution of the DisableAWSServiceAccess operation. ///

/// /// Container for the necessary parameters to execute the DisableAWSServiceAccess operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDisableAWSServiceAccess /// operation. /// REST API Reference for DisableAWSServiceAccess Operation IAsyncResult BeginDisableAWSServiceAccess(DisableAWSServiceAccessRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DisableAWSServiceAccess operation. ///

/// /// The IAsyncResult returned by the call to BeginDisableAWSServiceAccess. /// /// Returns a DisableAWSServiceAccessResult from Organizations. /// REST API Reference for DisableAWSServiceAccess Operation DisableAWSServiceAccessResponse EndDisableAWSServiceAccess(IAsyncResult asyncResult); #endregion #region DisablePolicyType ///

/// Disables an organizational policy type in a root. A policy of a certain type can be /// attached to entities in a root only if that type is enabled in the root. After you /// perform this operation, you no longer can attach policies of the specified type to /// that root or to any organizational unit (OU) or account in that root. You can undo /// this by using the EnablePolicyType operation. /// /// /// /// This is an asynchronous request that Amazon Web Services performs in the background. /// If you disable a policy type for a root, it still appears enabled for the organization /// if all /// features are enabled for the organization. Amazon Web Services recommends that /// you first use ListRoots to see the status of policy types for a specified root, /// and then use this operation. /// /// /// /// This operation can be called only from the organization's management account. /// /// /// /// To view the status of available policy types in the organization, use DescribeOrganization. /// ///

/// Container for the necessary parameters to execute the DisablePolicyType service method. /// /// The response from the DisablePolicyType service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Changes to the effective policy are in progress, and its contents can't be returned. /// Try the operation again later. /// /// /// The specified policy type isn't currently enabled in this root. You can't attach policies /// of the specified type to entities in a root until you enable that type in the root. /// For more information, see Enabling /// All Features in Your Organization in the Organizations User Guide. /// /// /// We can't find a root with the RootId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for DisablePolicyType Operation DisablePolicyTypeResponse DisablePolicyType(DisablePolicyTypeRequest request); ///

/// Initiates the asynchronous execution of the DisablePolicyType operation. ///

/// /// Container for the necessary parameters to execute the DisablePolicyType operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndDisablePolicyType /// operation. /// REST API Reference for DisablePolicyType Operation IAsyncResult BeginDisablePolicyType(DisablePolicyTypeRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the DisablePolicyType operation. ///

/// /// The IAsyncResult returned by the call to BeginDisablePolicyType. /// /// Returns a DisablePolicyTypeResult from Organizations. /// REST API Reference for DisablePolicyType Operation DisablePolicyTypeResponse EndDisablePolicyType(IAsyncResult asyncResult); #endregion #region EnableAllFeatures ///

/// Enables all features in an organization. This enables the use of organization policies /// that can restrict the services and actions that can be called in each account. Until /// you enable all features, you have access only to consolidated billing, and you can't /// use any of the advanced account administration features that Organizations supports. /// For more information, see Enabling /// All Features in Your Organization in the Organizations User Guide. /// /// /// /// This operation is required only for organizations that were created explicitly with /// only the consolidated billing features enabled. Calling this operation sends a handshake /// to every invited account in the organization. The feature set change can be finalized /// and the additional features enabled only after all administrators in the invited accounts /// approve the change by accepting the handshake. /// /// /// /// After you enable all features, you can separately enable or disable individual policy /// types in a root using EnablePolicyType and DisablePolicyType. To see /// the status of policy types in a root, use ListRoots. /// /// /// /// After all invited member accounts accept the handshake, you finalize the feature set /// change by accepting the handshake that contains "Action": "ENABLE_ALL_FEATURES". /// This completes the change. /// /// /// /// After you enable all features in your organization, the management account in the /// organization can apply policies on all member accounts. These policies can restrict /// what users and even administrators in those accounts can do. The management account /// can apply policies that prevent accounts from leaving the organization. Ensure that /// your account administrators are aware of this. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the EnableAllFeatures service method. /// /// The response from the EnableAllFeatures service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The requested operation would violate the constraint identified in the reason code. /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation: /// ///

/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. Note that deleted and closed accounts still count toward /// your limit. /// /// /// /// If you get this exception immediately after creating the organization, wait one hour /// and try again. If after an hour it continues to fail with this error, contact Amazon /// Web Services Support. /// ///
/// /// ALREADY_IN_AN_ORGANIZATION: The handshake request is invalid because the invited account /// is already a member of an organization. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVITE_DISABLED_DURING_ENABLE_ALL_FEATURES: You can't issue new invitations to join /// an organization while it's in the process of enabling all features. You can resume /// inviting accounts after you finalize the process when all accounts have agreed to /// the change. /// ///
/// /// ORGANIZATION_ALREADY_HAS_ALL_FEATURES: The handshake request is invalid because the /// organization has already enabled all features. /// ///
/// /// ORGANIZATION_IS_ALREADY_PENDING_ALL_FEATURES_MIGRATION: The handshake request is invalid /// because the organization has already started the process to enable all features. /// ///
/// /// ORGANIZATION_FROM_DIFFERENT_SELLER_OF_RECORD: The request failed because the account /// is from a different marketplace than the accounts in the organization. For example, /// accounts with India addresses must be associated with the AISPL marketplace. All accounts /// in an organization must be from the same marketplace. /// ///
/// /// ORGANIZATION_MEMBERSHIP_CHANGE_RATE_LIMIT_EXCEEDED: You attempted to change the membership /// of an account too quickly after its previous change. /// ///
/// /// PAYMENT_INSTRUMENT_REQUIRED: You can't complete the operation with an account that /// doesn't have a payment instrument, such as a credit card, associated with it. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for EnableAllFeatures Operation EnableAllFeaturesResponse EnableAllFeatures(EnableAllFeaturesRequest request); ///

/// Initiates the asynchronous execution of the EnableAllFeatures operation. ///

/// /// Container for the necessary parameters to execute the EnableAllFeatures operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndEnableAllFeatures /// operation. /// REST API Reference for EnableAllFeatures Operation IAsyncResult BeginEnableAllFeatures(EnableAllFeaturesRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the EnableAllFeatures operation. ///

/// /// The IAsyncResult returned by the call to BeginEnableAllFeatures. /// /// Returns a EnableAllFeaturesResult from Organizations. /// REST API Reference for EnableAllFeatures Operation EnableAllFeaturesResponse EndEnableAllFeatures(IAsyncResult asyncResult); #endregion #region EnableAWSServiceAccess ///

/// Enables the integration of an Amazon Web Services service (the service that is specified /// by ServicePrincipal) with Organizations. When you enable integration, /// you allow the specified service to create a service-linked /// role in all the accounts in your organization. This allows the service to perform /// operations on your behalf in your organization and its accounts. /// /// /// /// We recommend that you enable integration between Organizations and the specified Amazon /// Web Services service by using the console or commands that are provided by the specified /// service. Doing so ensures that the service is aware that it can create the resources /// that are required for the integration. How the service creates those resources in /// the organization's accounts depends on that service. For more information, see the /// documentation for the other Amazon Web Services service. /// /// /// /// For more information about enabling services to integrate with Organizations, see /// Integrating /// Organizations with Other Amazon Web Services Services in the Organizations /// User Guide. /// /// /// /// You can only call this operation from the organization's management account and only /// if the organization has enabled /// all features. /// ///

/// Container for the necessary parameters to execute the EnableAWSServiceAccess service method. /// /// The response from the EnableAWSServiceAccess service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for EnableAWSServiceAccess Operation EnableAWSServiceAccessResponse EnableAWSServiceAccess(EnableAWSServiceAccessRequest request); ///

/// Initiates the asynchronous execution of the EnableAWSServiceAccess operation. ///

/// /// Container for the necessary parameters to execute the EnableAWSServiceAccess operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndEnableAWSServiceAccess /// operation. /// REST API Reference for EnableAWSServiceAccess Operation IAsyncResult BeginEnableAWSServiceAccess(EnableAWSServiceAccessRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the EnableAWSServiceAccess operation. ///

/// /// The IAsyncResult returned by the call to BeginEnableAWSServiceAccess. /// /// Returns a EnableAWSServiceAccessResult from Organizations. /// REST API Reference for EnableAWSServiceAccess Operation EnableAWSServiceAccessResponse EndEnableAWSServiceAccess(IAsyncResult asyncResult); #endregion #region EnablePolicyType ///

/// Enables a policy type in a root. After you enable a policy type in a root, you can /// attach policies of that type to the root, any organizational unit (OU), or account /// in that root. You can undo this by using the DisablePolicyType operation. /// /// /// /// This is an asynchronous request that Amazon Web Services performs in the background. /// Amazon Web Services recommends that you first use ListRoots to see the status /// of policy types for a specified root, and then use this operation. /// /// /// /// This operation can be called only from the organization's management account. /// /// /// /// You can enable a policy type in a root only if that policy type is available in the /// organization. To view the status of available policy types in the organization, use /// DescribeOrganization. /// ///

/// Container for the necessary parameters to execute the EnablePolicyType service method. /// /// The response from the EnablePolicyType service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Changes to the effective policy are in progress, and its contents can't be returned. /// Try the operation again later. /// /// /// The specified policy type is already enabled in the specified root. /// /// /// You can't use the specified policy type with the feature set currently enabled for /// this organization. For example, you can enable SCPs only after you enable all features /// in the organization. For more information, see Managing /// Organizations Policiesin the Organizations User Guide. /// /// /// We can't find a root with the RootId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for EnablePolicyType Operation EnablePolicyTypeResponse EnablePolicyType(EnablePolicyTypeRequest request); ///

/// Initiates the asynchronous execution of the EnablePolicyType operation. ///

/// /// Container for the necessary parameters to execute the EnablePolicyType operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndEnablePolicyType /// operation. /// REST API Reference for EnablePolicyType Operation IAsyncResult BeginEnablePolicyType(EnablePolicyTypeRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the EnablePolicyType operation. ///

/// /// The IAsyncResult returned by the call to BeginEnablePolicyType. /// /// Returns a EnablePolicyTypeResult from Organizations. /// REST API Reference for EnablePolicyType Operation EnablePolicyTypeResponse EndEnablePolicyType(IAsyncResult asyncResult); #endregion #region InviteAccountToOrganization ///

/// Sends an invitation to another account to join your organization as a member account. /// Organizations sends email on your behalf to the email address that is associated with /// the other account's owner. The invitation is implemented as a Handshake whose /// details are in the response. /// ///

/// /// You can invite Amazon Web Services accounts only from the same seller as the management /// account. For example, if your organization's management account was created by Amazon /// Internet Services Pvt. Ltd (AISPL), an Amazon Web Services seller in India, you can /// invite only other AISPL accounts to your organization. You can't combine accounts /// from AISPL and Amazon Web Services or from any other Amazon Web Services seller. For /// more information, see Consolidated /// Billing in India. /// ///
/// /// If you receive an exception that indicates that you exceeded your account limits for /// the organization or that the operation failed because your organization is still initializing, /// wait one hour and then try again. If the error persists after an hour, contact Amazon Web Services Support. /// ///

/// /// If the request includes tags, then the requester must have the organizations:TagResource /// permission. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the InviteAccountToOrganization service method. /// /// The response from the InviteAccountToOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// You can't invite an existing account to your organization until you verify that you /// own the email address associated with the management account. For more information, /// see Email /// Address Verification in the Organizations User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// /// A handshake with the same action and target already exists. For example, if you invited /// an account to join your organization, the invited account might already have a pending /// invitation from this organization. If you intend to resend an invitation to an account, /// ensure that existing handshakes that might be considered duplicates are canceled or /// declined. /// /// /// Organizations couldn't perform the operation because your organization hasn't finished /// initializing. This can take up to an hour. Try again later. If after one hour you /// continue to receive this error, contact Amazon /// Web Services Support. /// /// /// The requested operation would violate the constraint identified in the reason code. /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation: /// ///

/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. Note that deleted and closed accounts still count toward /// your limit. /// /// /// /// If you get this exception immediately after creating the organization, wait one hour /// and try again. If after an hour it continues to fail with this error, contact Amazon /// Web Services Support. /// ///
/// /// ALREADY_IN_AN_ORGANIZATION: The handshake request is invalid because the invited account /// is already a member of an organization. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVITE_DISABLED_DURING_ENABLE_ALL_FEATURES: You can't issue new invitations to join /// an organization while it's in the process of enabling all features. You can resume /// inviting accounts after you finalize the process when all accounts have agreed to /// the change. /// ///
/// /// ORGANIZATION_ALREADY_HAS_ALL_FEATURES: The handshake request is invalid because the /// organization has already enabled all features. /// ///
/// /// ORGANIZATION_IS_ALREADY_PENDING_ALL_FEATURES_MIGRATION: The handshake request is invalid /// because the organization has already started the process to enable all features. /// ///
/// /// ORGANIZATION_FROM_DIFFERENT_SELLER_OF_RECORD: The request failed because the account /// is from a different marketplace than the accounts in the organization. For example, /// accounts with India addresses must be associated with the AISPL marketplace. All accounts /// in an organization must be from the same marketplace. /// ///
/// /// ORGANIZATION_MEMBERSHIP_CHANGE_RATE_LIMIT_EXCEEDED: You attempted to change the membership /// of an account too quickly after its previous change. /// ///
/// /// PAYMENT_INSTRUMENT_REQUIRED: You can't complete the operation with an account that /// doesn't have a payment instrument, such as a credit card, associated with it. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for InviteAccountToOrganization Operation InviteAccountToOrganizationResponse InviteAccountToOrganization(InviteAccountToOrganizationRequest request); ///

/// Initiates the asynchronous execution of the InviteAccountToOrganization operation. ///

/// /// Container for the necessary parameters to execute the InviteAccountToOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndInviteAccountToOrganization /// operation. /// REST API Reference for InviteAccountToOrganization Operation IAsyncResult BeginInviteAccountToOrganization(InviteAccountToOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the InviteAccountToOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginInviteAccountToOrganization. /// /// Returns a InviteAccountToOrganizationResult from Organizations. /// REST API Reference for InviteAccountToOrganization Operation InviteAccountToOrganizationResponse EndInviteAccountToOrganization(IAsyncResult asyncResult); #endregion #region LeaveOrganization ///

/// Removes a member account from its parent organization. This version of the operation /// is performed by the account that wants to leave. To remove a member account as a user /// in the management account, use RemoveAccountFromOrganization instead. /// /// /// /// This operation can be called only from a member account in the organization. /// ///

/// /// The management account in an organization with all features enabled can set service /// control policies (SCPs) that can restrict what administrators of member accounts can /// do. This includes preventing them from successfully calling LeaveOrganization /// and leaving the organization. /// ///
/// /// You can leave an organization as a member account only if the account is configured /// with the information required to operate as a standalone account. When you create /// an account in an organization using the Organizations console, API, or CLI commands, /// the information required of standalone accounts is not automatically collected. /// For each account that you want to make standalone, you must perform the following /// steps. If any of the steps are already completed for this account, that step doesn't /// appear. /// ///
- /// /// Choose a support plan /// ///
- /// /// Provide and verify the required contact information /// ///
- /// /// Provide a current payment method /// ///
/// /// Amazon Web Services uses the payment method to charge for any billable (not free tier) /// Amazon Web Services activity that occurs while the account isn't attached to an organization. /// Follow the steps at /// To leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// The account that you want to leave must not be a delegated administrator account for /// any Amazon Web Services service enabled for your organization. If the account is a /// delegated administrator, you must first change the delegated administrator account /// to another account that is remaining in the organization. /// ///
/// /// You can leave an organization only after you enable IAM user access to billing in /// your account. For more information, see Activating /// Access to the Billing and Cost Management Console in the Amazon Web Services /// Billing and Cost Management User Guide. /// ///
/// /// After the account leaves the organization, all tags that were attached to the account /// object in the organization are deleted. Amazon Web Services accounts outside of an /// organization do not support tags. /// ///
/// /// A newly created account has a waiting period before it can be removed from its organization. /// If you get an error that indicates that a wait period is required, then try again /// in a few days. /// ///

///

/// Container for the necessary parameters to execute the LeaveOrganization service method. /// /// The response from the LeaveOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// You can't remove a management account from an organization. If you want the management /// account to become a member account in another organization, you must first delete /// the current organization of the management account. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for LeaveOrganization Operation LeaveOrganizationResponse LeaveOrganization(LeaveOrganizationRequest request); ///

/// Initiates the asynchronous execution of the LeaveOrganization operation. ///

/// /// Container for the necessary parameters to execute the LeaveOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndLeaveOrganization /// operation. /// REST API Reference for LeaveOrganization Operation IAsyncResult BeginLeaveOrganization(LeaveOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the LeaveOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginLeaveOrganization. /// /// Returns a LeaveOrganizationResult from Organizations. /// REST API Reference for LeaveOrganization Operation LeaveOrganizationResponse EndLeaveOrganization(IAsyncResult asyncResult); #endregion #region ListAccounts ///

/// Lists all the accounts in the organization. To request only the accounts in a specified /// root or organizational unit (OU), use the ListAccountsForParent operation instead. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListAccounts service method. /// /// The response from the ListAccounts service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListAccounts Operation ListAccountsResponse ListAccounts(ListAccountsRequest request); ///

/// Initiates the asynchronous execution of the ListAccounts operation. ///

/// /// Container for the necessary parameters to execute the ListAccounts operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListAccounts /// operation. /// REST API Reference for ListAccounts Operation IAsyncResult BeginListAccounts(ListAccountsRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListAccounts operation. ///

/// /// The IAsyncResult returned by the call to BeginListAccounts. /// /// Returns a ListAccountsResult from Organizations. /// REST API Reference for ListAccounts Operation ListAccountsResponse EndListAccounts(IAsyncResult asyncResult); #endregion #region ListAccountsForParent ///

/// Lists the accounts in an organization that are contained by the specified target root /// or organizational unit (OU). If you specify the root, you get a list of all the accounts /// that aren't in any OU. If you specify an OU, you get a list of all the accounts in /// only that OU and not in any child OUs. To get a list of all accounts in the organization, /// use the ListAccounts operation. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListAccountsForParent service method. /// /// The response from the ListAccountsForParent service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find a root or OU with the ParentId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListAccountsForParent Operation ListAccountsForParentResponse ListAccountsForParent(ListAccountsForParentRequest request); ///

/// Initiates the asynchronous execution of the ListAccountsForParent operation. ///

/// /// Container for the necessary parameters to execute the ListAccountsForParent operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListAccountsForParent /// operation. /// REST API Reference for ListAccountsForParent Operation IAsyncResult BeginListAccountsForParent(ListAccountsForParentRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListAccountsForParent operation. ///

/// /// The IAsyncResult returned by the call to BeginListAccountsForParent. /// /// Returns a ListAccountsForParentResult from Organizations. /// REST API Reference for ListAccountsForParent Operation ListAccountsForParentResponse EndListAccountsForParent(IAsyncResult asyncResult); #endregion #region ListAWSServiceAccessForOrganization ///

/// Returns a list of the Amazon Web Services services that you enabled to integrate with /// your organization. After a service on this list creates the resources that it requires /// for the integration, it can perform operations on your organization and its accounts. /// /// /// /// For more information about integrating other services with Organizations, including /// the list of services that currently work with Organizations, see Integrating /// Organizations with Other Amazon Web Services Services in the Organizations /// User Guide. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListAWSServiceAccessForOrganization service method. /// /// The response from the ListAWSServiceAccessForOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListAWSServiceAccessForOrganization Operation ListAWSServiceAccessForOrganizationResponse ListAWSServiceAccessForOrganization(ListAWSServiceAccessForOrganizationRequest request); ///

/// Initiates the asynchronous execution of the ListAWSServiceAccessForOrganization operation. ///

/// /// Container for the necessary parameters to execute the ListAWSServiceAccessForOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListAWSServiceAccessForOrganization /// operation. /// REST API Reference for ListAWSServiceAccessForOrganization Operation IAsyncResult BeginListAWSServiceAccessForOrganization(ListAWSServiceAccessForOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListAWSServiceAccessForOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginListAWSServiceAccessForOrganization. /// /// Returns a ListAWSServiceAccessForOrganizationResult from Organizations. /// REST API Reference for ListAWSServiceAccessForOrganization Operation ListAWSServiceAccessForOrganizationResponse EndListAWSServiceAccessForOrganization(IAsyncResult asyncResult); #endregion #region ListChildren ///

/// Lists all of the organizational units (OUs) or accounts that are contained in the /// specified parent OU or root. This operation, along with ListParents enables /// you to traverse the tree structure that makes up this root. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListChildren service method. /// /// The response from the ListChildren service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find a root or OU with the ParentId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListChildren Operation ListChildrenResponse ListChildren(ListChildrenRequest request); ///

/// Initiates the asynchronous execution of the ListChildren operation. ///

/// /// Container for the necessary parameters to execute the ListChildren operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListChildren /// operation. /// REST API Reference for ListChildren Operation IAsyncResult BeginListChildren(ListChildrenRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListChildren operation. ///

/// /// The IAsyncResult returned by the call to BeginListChildren. /// /// Returns a ListChildrenResult from Organizations. /// REST API Reference for ListChildren Operation ListChildrenResponse EndListChildren(IAsyncResult asyncResult); #endregion #region ListCreateAccountStatus ///

/// Lists the account creation requests that match the specified status that is currently /// being tracked for the organization. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListCreateAccountStatus service method. /// /// The response from the ListCreateAccountStatus service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListCreateAccountStatus Operation ListCreateAccountStatusResponse ListCreateAccountStatus(ListCreateAccountStatusRequest request); ///

/// Initiates the asynchronous execution of the ListCreateAccountStatus operation. ///

/// /// Container for the necessary parameters to execute the ListCreateAccountStatus operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListCreateAccountStatus /// operation. /// REST API Reference for ListCreateAccountStatus Operation IAsyncResult BeginListCreateAccountStatus(ListCreateAccountStatusRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListCreateAccountStatus operation. ///

/// /// The IAsyncResult returned by the call to BeginListCreateAccountStatus. /// /// Returns a ListCreateAccountStatusResult from Organizations. /// REST API Reference for ListCreateAccountStatus Operation ListCreateAccountStatusResponse EndListCreateAccountStatus(IAsyncResult asyncResult); #endregion #region ListDelegatedAdministrators ///

/// Lists the Amazon Web Services accounts that are designated as delegated administrators /// in this organization. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListDelegatedAdministrators service method. /// /// The response from the ListDelegatedAdministrators service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListDelegatedAdministrators Operation ListDelegatedAdministratorsResponse ListDelegatedAdministrators(ListDelegatedAdministratorsRequest request); ///

/// Initiates the asynchronous execution of the ListDelegatedAdministrators operation. ///

/// /// Container for the necessary parameters to execute the ListDelegatedAdministrators operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListDelegatedAdministrators /// operation. /// REST API Reference for ListDelegatedAdministrators Operation IAsyncResult BeginListDelegatedAdministrators(ListDelegatedAdministratorsRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListDelegatedAdministrators operation. ///

/// /// The IAsyncResult returned by the call to BeginListDelegatedAdministrators. /// /// Returns a ListDelegatedAdministratorsResult from Organizations. /// REST API Reference for ListDelegatedAdministrators Operation ListDelegatedAdministratorsResponse EndListDelegatedAdministrators(IAsyncResult asyncResult); #endregion #region ListDelegatedServicesForAccount ///

/// List the Amazon Web Services services for which the specified account is a delegated /// administrator. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListDelegatedServicesForAccount service method. /// /// The response from the ListDelegatedServicesForAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// The specified account is not a delegated administrator for this Amazon Web Services /// service. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListDelegatedServicesForAccount Operation ListDelegatedServicesForAccountResponse ListDelegatedServicesForAccount(ListDelegatedServicesForAccountRequest request); ///

/// Initiates the asynchronous execution of the ListDelegatedServicesForAccount operation. ///

/// /// Container for the necessary parameters to execute the ListDelegatedServicesForAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListDelegatedServicesForAccount /// operation. /// REST API Reference for ListDelegatedServicesForAccount Operation IAsyncResult BeginListDelegatedServicesForAccount(ListDelegatedServicesForAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListDelegatedServicesForAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginListDelegatedServicesForAccount. /// /// Returns a ListDelegatedServicesForAccountResult from Organizations. /// REST API Reference for ListDelegatedServicesForAccount Operation ListDelegatedServicesForAccountResponse EndListDelegatedServicesForAccount(IAsyncResult asyncResult); #endregion #region ListHandshakesForAccount ///

/// Lists the current handshakes that are associated with the account of the requesting /// user. /// /// /// /// Handshakes that are ACCEPTED, DECLINED, CANCELED, /// or EXPIRED appear in the results of this API for only 30 days after changing /// to that state. After that, they're deleted and no longer accessible. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called from any account in the organization. /// ///

/// Container for the necessary parameters to execute the ListHandshakesForAccount service method. /// /// The response from the ListHandshakesForAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListHandshakesForAccount Operation ListHandshakesForAccountResponse ListHandshakesForAccount(ListHandshakesForAccountRequest request); ///

/// Initiates the asynchronous execution of the ListHandshakesForAccount operation. ///

/// /// Container for the necessary parameters to execute the ListHandshakesForAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListHandshakesForAccount /// operation. /// REST API Reference for ListHandshakesForAccount Operation IAsyncResult BeginListHandshakesForAccount(ListHandshakesForAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListHandshakesForAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginListHandshakesForAccount. /// /// Returns a ListHandshakesForAccountResult from Organizations. /// REST API Reference for ListHandshakesForAccount Operation ListHandshakesForAccountResponse EndListHandshakesForAccount(IAsyncResult asyncResult); #endregion #region ListHandshakesForOrganization ///

/// Lists the handshakes that are associated with the organization that the requesting /// user is part of. The ListHandshakesForOrganization operation returns /// a list of handshake structures. Each structure contains details and status about a /// handshake. /// /// /// /// Handshakes that are ACCEPTED, DECLINED, CANCELED, /// or EXPIRED appear in the results of this API for only 30 days after changing /// to that state. After that, they're deleted and no longer accessible. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListHandshakesForOrganization service method. /// /// The response from the ListHandshakesForOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListHandshakesForOrganization Operation ListHandshakesForOrganizationResponse ListHandshakesForOrganization(ListHandshakesForOrganizationRequest request); ///

/// Initiates the asynchronous execution of the ListHandshakesForOrganization operation. ///

/// /// Container for the necessary parameters to execute the ListHandshakesForOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListHandshakesForOrganization /// operation. /// REST API Reference for ListHandshakesForOrganization Operation IAsyncResult BeginListHandshakesForOrganization(ListHandshakesForOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListHandshakesForOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginListHandshakesForOrganization. /// /// Returns a ListHandshakesForOrganizationResult from Organizations. /// REST API Reference for ListHandshakesForOrganization Operation ListHandshakesForOrganizationResponse EndListHandshakesForOrganization(IAsyncResult asyncResult); #endregion #region ListOrganizationalUnitsForParent ///

/// Lists the organizational units (OUs) in a parent organizational unit or root. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListOrganizationalUnitsForParent service method. /// /// The response from the ListOrganizationalUnitsForParent service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find a root or OU with the ParentId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListOrganizationalUnitsForParent Operation ListOrganizationalUnitsForParentResponse ListOrganizationalUnitsForParent(ListOrganizationalUnitsForParentRequest request); ///

/// Initiates the asynchronous execution of the ListOrganizationalUnitsForParent operation. ///

/// /// Container for the necessary parameters to execute the ListOrganizationalUnitsForParent operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListOrganizationalUnitsForParent /// operation. /// REST API Reference for ListOrganizationalUnitsForParent Operation IAsyncResult BeginListOrganizationalUnitsForParent(ListOrganizationalUnitsForParentRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListOrganizationalUnitsForParent operation. ///

/// /// The IAsyncResult returned by the call to BeginListOrganizationalUnitsForParent. /// /// Returns a ListOrganizationalUnitsForParentResult from Organizations. /// REST API Reference for ListOrganizationalUnitsForParent Operation ListOrganizationalUnitsForParentResponse EndListOrganizationalUnitsForParent(IAsyncResult asyncResult); #endregion #region ListParents ///

/// Lists the root or organizational units (OUs) that serve as the immediate parent of /// the specified child OU or account. This operation, along with ListChildren /// enables you to traverse the tree structure that makes up this root. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// /// /// /// In the current release, a child can have only a single parent. /// /// ///

/// Container for the necessary parameters to execute the ListParents service method. /// /// The response from the ListParents service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// We can't find an organizational unit (OU) or Amazon Web Services account with the /// ChildId that you specified. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListParents Operation ListParentsResponse ListParents(ListParentsRequest request); ///

/// Initiates the asynchronous execution of the ListParents operation. ///

/// /// Container for the necessary parameters to execute the ListParents operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListParents /// operation. /// REST API Reference for ListParents Operation IAsyncResult BeginListParents(ListParentsRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListParents operation. ///

/// /// The IAsyncResult returned by the call to BeginListParents. /// /// Returns a ListParentsResult from Organizations. /// REST API Reference for ListParents Operation ListParentsResponse EndListParents(IAsyncResult asyncResult); #endregion #region ListPolicies ///

/// Retrieves the list of all policies in an organization of a specified type. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListPolicies service method. /// /// The response from the ListPolicies service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListPolicies Operation ListPoliciesResponse ListPolicies(ListPoliciesRequest request); ///

/// Initiates the asynchronous execution of the ListPolicies operation. ///

/// /// Container for the necessary parameters to execute the ListPolicies operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListPolicies /// operation. /// REST API Reference for ListPolicies Operation IAsyncResult BeginListPolicies(ListPoliciesRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListPolicies operation. ///

/// /// The IAsyncResult returned by the call to BeginListPolicies. /// /// Returns a ListPoliciesResult from Organizations. /// REST API Reference for ListPolicies Operation ListPoliciesResponse EndListPolicies(IAsyncResult asyncResult); #endregion #region ListPoliciesForTarget ///

/// Lists the policies that are directly attached to the specified target root, organizational /// unit (OU), or account. You must specify the policy type that you want included in /// the returned list. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListPoliciesForTarget service method. /// /// The response from the ListPoliciesForTarget service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListPoliciesForTarget Operation ListPoliciesForTargetResponse ListPoliciesForTarget(ListPoliciesForTargetRequest request); ///

/// Initiates the asynchronous execution of the ListPoliciesForTarget operation. ///

/// /// Container for the necessary parameters to execute the ListPoliciesForTarget operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListPoliciesForTarget /// operation. /// REST API Reference for ListPoliciesForTarget Operation IAsyncResult BeginListPoliciesForTarget(ListPoliciesForTargetRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListPoliciesForTarget operation. ///

/// /// The IAsyncResult returned by the call to BeginListPoliciesForTarget. /// /// Returns a ListPoliciesForTargetResult from Organizations. /// REST API Reference for ListPoliciesForTarget Operation ListPoliciesForTargetResponse EndListPoliciesForTarget(IAsyncResult asyncResult); #endregion #region ListRoots ///

/// Lists the roots that are defined in the current organization. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// /// /// /// Policy types can be enabled and disabled in roots. This is distinct from whether they're /// available in the organization. When you enable all features, you make policy types /// available for use in that organization. Individual policy types can then be enabled /// and disabled in a root. To see the availability of a policy type in an organization, /// use DescribeOrganization. /// /// ///

/// Container for the necessary parameters to execute the ListRoots service method. /// /// The response from the ListRoots service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListRoots Operation ListRootsResponse ListRoots(ListRootsRequest request); ///

/// Initiates the asynchronous execution of the ListRoots operation. ///

/// /// Container for the necessary parameters to execute the ListRoots operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListRoots /// operation. /// REST API Reference for ListRoots Operation IAsyncResult BeginListRoots(ListRootsRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListRoots operation. ///

/// /// The IAsyncResult returned by the call to BeginListRoots. /// /// Returns a ListRootsResult from Organizations. /// REST API Reference for ListRoots Operation ListRootsResponse EndListRoots(IAsyncResult asyncResult); #endregion #region ListTagsForResource ///

/// Lists tags that are attached to the specified resource. /// /// /// /// You can attach tags to the following resources in Organizations. /// ///

/// /// Amazon Web Services account /// ///
/// /// Organization root /// ///
/// /// Organizational unit (OU) /// ///
/// /// Policy (any type) /// ///

/// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListTagsForResource service method. /// /// The response from the ListTagsForResource service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for ListTagsForResource Operation ListTagsForResourceResponse ListTagsForResource(ListTagsForResourceRequest request); ///

/// Initiates the asynchronous execution of the ListTagsForResource operation. ///

/// /// Container for the necessary parameters to execute the ListTagsForResource operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListTagsForResource /// operation. /// REST API Reference for ListTagsForResource Operation IAsyncResult BeginListTagsForResource(ListTagsForResourceRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListTagsForResource operation. ///

/// /// The IAsyncResult returned by the call to BeginListTagsForResource. /// /// Returns a ListTagsForResourceResult from Organizations. /// REST API Reference for ListTagsForResource Operation ListTagsForResourceResponse EndListTagsForResource(IAsyncResult asyncResult); #endregion #region ListTargetsForPolicy ///

/// Lists all the roots, organizational units (OUs), and accounts that the specified policy /// is attached to. /// /// /// /// Always check the NextToken response parameter for a null /// value when calling a List* operation. These operations can occasionally /// return an empty set of results even when there are more results available. The NextToken /// response parameter value is null only when there are no more results /// to display. /// /// /// /// This operation can be called only from the organization's management account or by /// a member account that is a delegated administrator for an Amazon Web Services service. /// ///

/// Container for the necessary parameters to execute the ListTargetsForPolicy service method. /// /// The response from the ListTargetsForPolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find a policy with the PolicyId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for ListTargetsForPolicy Operation ListTargetsForPolicyResponse ListTargetsForPolicy(ListTargetsForPolicyRequest request); ///

/// Initiates the asynchronous execution of the ListTargetsForPolicy operation. ///

/// /// Container for the necessary parameters to execute the ListTargetsForPolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndListTargetsForPolicy /// operation. /// REST API Reference for ListTargetsForPolicy Operation IAsyncResult BeginListTargetsForPolicy(ListTargetsForPolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the ListTargetsForPolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginListTargetsForPolicy. /// /// Returns a ListTargetsForPolicyResult from Organizations. /// REST API Reference for ListTargetsForPolicy Operation ListTargetsForPolicyResponse EndListTargetsForPolicy(IAsyncResult asyncResult); #endregion #region MoveAccount ///

/// Moves an account from its current source parent root or organizational unit (OU) to /// the specified destination parent root or OU. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the MoveAccount service method. /// /// The response from the MoveAccount service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// We can't find the destination container (a root or OU) with the ParentId /// that you specified. /// /// /// That account is already present in the specified destination. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a source root or OU with the ParentId that you specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for MoveAccount Operation MoveAccountResponse MoveAccount(MoveAccountRequest request); ///

/// Initiates the asynchronous execution of the MoveAccount operation. ///

/// /// Container for the necessary parameters to execute the MoveAccount operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndMoveAccount /// operation. /// REST API Reference for MoveAccount Operation IAsyncResult BeginMoveAccount(MoveAccountRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the MoveAccount operation. ///

/// /// The IAsyncResult returned by the call to BeginMoveAccount. /// /// Returns a MoveAccountResult from Organizations. /// REST API Reference for MoveAccount Operation MoveAccountResponse EndMoveAccount(IAsyncResult asyncResult); #endregion #region PutResourcePolicy ///

/// Creates or updates a resource policy. /// /// /// /// You can only call this operation from the organization's management account. /// ///

/// Container for the necessary parameters to execute the PutResourcePolicy service method. /// /// The response from the PutResourcePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for PutResourcePolicy Operation PutResourcePolicyResponse PutResourcePolicy(PutResourcePolicyRequest request); ///

/// Initiates the asynchronous execution of the PutResourcePolicy operation. ///

/// /// Container for the necessary parameters to execute the PutResourcePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndPutResourcePolicy /// operation. /// REST API Reference for PutResourcePolicy Operation IAsyncResult BeginPutResourcePolicy(PutResourcePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the PutResourcePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginPutResourcePolicy. /// /// Returns a PutResourcePolicyResult from Organizations. /// REST API Reference for PutResourcePolicy Operation PutResourcePolicyResponse EndPutResourcePolicy(IAsyncResult asyncResult); #endregion #region RegisterDelegatedAdministrator ///

/// Enables the specified member account to administer the Organizations features of the /// specified Amazon Web Services service. It grants read-only access to Organizations /// service data. The account still requires IAM permissions to access and administer /// the Amazon Web Services service. /// /// /// /// You can run this action only for Amazon Web Services services that support this feature. /// For a current list of services that support it, see the column Supports Delegated /// Administrator in the table at Amazon /// Web Services Services that you can use with Organizations in the Organizations /// User Guide. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the RegisterDelegatedAdministrator service method. /// /// The response from the RegisterDelegatedAdministrator service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// The specified account is already a delegated administrator for this Amazon Web Services /// service. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for RegisterDelegatedAdministrator Operation RegisterDelegatedAdministratorResponse RegisterDelegatedAdministrator(RegisterDelegatedAdministratorRequest request); ///

/// Initiates the asynchronous execution of the RegisterDelegatedAdministrator operation. ///

/// /// Container for the necessary parameters to execute the RegisterDelegatedAdministrator operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndRegisterDelegatedAdministrator /// operation. /// REST API Reference for RegisterDelegatedAdministrator Operation IAsyncResult BeginRegisterDelegatedAdministrator(RegisterDelegatedAdministratorRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the RegisterDelegatedAdministrator operation. ///

/// /// The IAsyncResult returned by the call to BeginRegisterDelegatedAdministrator. /// /// Returns a RegisterDelegatedAdministratorResult from Organizations. /// REST API Reference for RegisterDelegatedAdministrator Operation RegisterDelegatedAdministratorResponse EndRegisterDelegatedAdministrator(IAsyncResult asyncResult); #endregion #region RemoveAccountFromOrganization ///

/// Removes the specified account from the organization. /// /// /// /// The removed account becomes a standalone account that isn't a member of any organization. /// It's no longer subject to any policies and is responsible for its own bill payments. /// The organization's management account is no longer charged for any expenses accrued /// by the member account after it's removed from the organization. /// /// /// /// This operation can be called only from the organization's management account. Member /// accounts can remove themselves with LeaveOrganization instead. /// ///

/// /// You can remove an account from your organization only if the account is configured /// with the information required to operate as a standalone account. When you create /// an account in an organization using the Organizations console, API, or CLI commands, /// the information required of standalone accounts is not automatically collected. /// For an account that you want to make standalone, you must choose a support plan, provide /// and verify the required contact information, and provide a current payment method. /// Amazon Web Services uses the payment method to charge for any billable (not free tier) /// Amazon Web Services activity that occurs while the account isn't attached to an organization. /// To remove an account that doesn't yet have this information, you must sign in as the /// member account and follow the steps at /// To leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// The account that you want to leave must not be a delegated administrator account for /// any Amazon Web Services service enabled for your organization. If the account is a /// delegated administrator, you must first change the delegated administrator account /// to another account that is remaining in the organization. /// ///
/// /// After the account leaves the organization, all tags that were attached to the account /// object in the organization are deleted. Amazon Web Services accounts outside of an /// organization do not support tags. /// ///

///

/// Container for the necessary parameters to execute the RemoveAccountFromOrganization service method. /// /// The response from the RemoveAccountFromOrganization service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// We can't find an Amazon Web Services account with the AccountId that /// you specified, or the account whose credentials you used to make this request isn't /// a member of an organization. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// You can't remove a management account from an organization. If you want the management /// account to become a member account in another organization, you must first delete /// the current organization of the management account. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for RemoveAccountFromOrganization Operation RemoveAccountFromOrganizationResponse RemoveAccountFromOrganization(RemoveAccountFromOrganizationRequest request); ///

/// Initiates the asynchronous execution of the RemoveAccountFromOrganization operation. ///

/// /// Container for the necessary parameters to execute the RemoveAccountFromOrganization operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndRemoveAccountFromOrganization /// operation. /// REST API Reference for RemoveAccountFromOrganization Operation IAsyncResult BeginRemoveAccountFromOrganization(RemoveAccountFromOrganizationRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the RemoveAccountFromOrganization operation. ///

/// /// The IAsyncResult returned by the call to BeginRemoveAccountFromOrganization. /// /// Returns a RemoveAccountFromOrganizationResult from Organizations. /// REST API Reference for RemoveAccountFromOrganization Operation RemoveAccountFromOrganizationResponse EndRemoveAccountFromOrganization(IAsyncResult asyncResult); #endregion #region TagResource ///

/// Adds one or more tags to the specified resource. /// /// /// /// Currently, you can attach tags to the following resources in Organizations. /// ///

/// /// Amazon Web Services account /// ///
/// /// Organization root /// ///
/// /// Organizational unit (OU) /// ///
/// /// Policy (any type) /// ///

/// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the TagResource service method. /// /// The response from the TagResource service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for TagResource Operation TagResourceResponse TagResource(TagResourceRequest request); ///

/// Initiates the asynchronous execution of the TagResource operation. ///

/// /// Container for the necessary parameters to execute the TagResource operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndTagResource /// operation. /// REST API Reference for TagResource Operation IAsyncResult BeginTagResource(TagResourceRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the TagResource operation. ///

/// /// The IAsyncResult returned by the call to BeginTagResource. /// /// Returns a TagResourceResult from Organizations. /// REST API Reference for TagResource Operation TagResourceResponse EndTagResource(IAsyncResult asyncResult); #endregion #region UntagResource ///

/// Removes any tags with the specified keys from the specified resource. /// /// /// /// You can attach tags to the following resources in Organizations. /// ///

/// /// Amazon Web Services account /// ///
/// /// Organization root /// ///
/// /// Organizational unit (OU) /// ///
/// /// Policy (any type) /// ///

/// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the UntagResource service method. /// /// The response from the UntagResource service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// We can't find a root, OU, account, or policy with the TargetId that you /// specified. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for UntagResource Operation UntagResourceResponse UntagResource(UntagResourceRequest request); ///

/// Initiates the asynchronous execution of the UntagResource operation. ///

/// /// Container for the necessary parameters to execute the UntagResource operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndUntagResource /// operation. /// REST API Reference for UntagResource Operation IAsyncResult BeginUntagResource(UntagResourceRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the UntagResource operation. ///

/// /// The IAsyncResult returned by the call to BeginUntagResource. /// /// Returns a UntagResourceResult from Organizations. /// REST API Reference for UntagResource Operation UntagResourceResponse EndUntagResource(IAsyncResult asyncResult); #endregion #region UpdateOrganizationalUnit ///

/// Renames the specified organizational unit (OU). The ID and ARN don't change. The child /// OUs and accounts remain in place, and any attached policies of the OU remain attached. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the UpdateOrganizationalUnit service method. /// /// The response from the UpdateOrganizationalUnit service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// An OU with the same name already exists. /// /// /// The requested operation failed because you provided invalid values for one or more /// of the request parameters. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// We can't find an OU with the OrganizationalUnitId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// REST API Reference for UpdateOrganizationalUnit Operation UpdateOrganizationalUnitResponse UpdateOrganizationalUnit(UpdateOrganizationalUnitRequest request); ///

/// Initiates the asynchronous execution of the UpdateOrganizationalUnit operation. ///

/// /// Container for the necessary parameters to execute the UpdateOrganizationalUnit operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndUpdateOrganizationalUnit /// operation. /// REST API Reference for UpdateOrganizationalUnit Operation IAsyncResult BeginUpdateOrganizationalUnit(UpdateOrganizationalUnitRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the UpdateOrganizationalUnit operation. ///

/// /// The IAsyncResult returned by the call to BeginUpdateOrganizationalUnit. /// /// Returns a UpdateOrganizationalUnitResult from Organizations. /// REST API Reference for UpdateOrganizationalUnit Operation UpdateOrganizationalUnitResponse EndUpdateOrganizationalUnit(IAsyncResult asyncResult); #endregion #region UpdatePolicy ///

/// Updates an existing policy with a new name, description, or content. If you don't /// supply any parameter, that value remains unchanged. You can't change a policy's type. /// /// /// /// This operation can be called only from the organization's management account. /// ///

/// Container for the necessary parameters to execute the UpdatePolicy service method. /// /// The response from the UpdatePolicy service method, as returned by Organizations. /// /// You don't have permissions to perform the requested operation. The user or role that /// is making the request must have at least one IAM permissions policy attached that /// grants the required permissions. For more information, see Access /// Management in the IAM User Guide. /// /// /// Your account isn't a member of an organization. To make this request, you must use /// the credentials of an account that belongs to an organization. /// /// /// The target of the operation is currently being modified by a different request. Try /// again later. /// /// /// Performing this operation violates a minimum or maximum value limit. For example, /// attempting to remove the last service control policy (SCP) from an OU or root, inviting /// or creating too many accounts to the organization, or attaching too many policies /// to an account, OU, or root. This exception includes a reason that contains additional /// information about the violated limit: /// /// /// /// Some of the reasons in the following list might not be applicable to this specific /// API or operation. /// ///

/// /// ACCOUNT_CANNOT_LEAVE_ORGANIZATION: You attempted to remove the management account /// from the organization. You can't remove the management account. Instead, after you /// remove all member accounts, delete the organization itself. /// ///
/// /// ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove an account /// from the organization that doesn't yet have enough information to exist as a standalone /// account. This account requires you to first complete phone verification. Follow the /// steps at Removing /// a member account from your organization in the Organizations User Guide. /// /// ///
/// /// ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can create in one day. /// ///
/// /// ACCOUNT_CREATION_NOT_COMPLETE: Your account setup isn't complete or your account isn't /// fully active. You must complete the account setup before you create an organization. /// ///
/// /// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number of /// accounts in an organization. If you need more accounts, contact Amazon /// Web Services Support to request an increase in your limit. /// /// /// /// Or the number of invitations that you tried to send would cause you to exceed the /// limit of accounts in your organization. Send fewer invitations or contact Amazon Web /// Services Support to request an increase in the number of accounts. /// /// /// /// Deleted and closed accounts still count toward your limit. /// /// /// /// If you get this exception when running a command immediately after creating the organization, /// wait one hour and try again. After an hour, if the command continues to fail with /// this error, contact Amazon Web /// Services Support. /// ///
/// /// CANNOT_REGISTER_MASTER_AS_DELEGATED_ADMINISTRATOR: You attempted to register the management /// account of the organization as a delegated administrator for an Amazon Web Services /// service integrated with Organizations. You can designate only a member account as /// a delegated administrator. /// ///
/// /// CANNOT_CLOSE_MANAGEMENT_ACCOUNT: You attempted to close the management account. To /// close the management account for the organization, you must first either remove or /// close all member accounts in the organization. Follow standard account closure process /// using root credentials. /// ///
/// /// CANNOT_REMOVE_DELEGATED_ADMINISTRATOR_FROM_ORG: You attempted to remove an account /// that is registered as a delegated administrator for a service integrated with your /// organization. To complete this operation, you must first deregister this account as /// a delegated administrator. /// ///
/// /// CLOSE_ACCOUNT_QUOTA_EXCEEDED: You have exceeded close account quota for the past 30 /// days. /// ///
/// /// CLOSE_ACCOUNT_REQUESTS_LIMIT_EXCEEDED: You attempted to exceed the number of accounts /// that you can close at a time. /// ///
/// /// CREATE_ORGANIZATION_IN_BILLING_MODE_UNSUPPORTED_REGION: To create an organization /// in the specified region, you must enable all features mode. /// ///
/// /// DELEGATED_ADMINISTRATOR_EXISTS_FOR_THIS_SERVICE: You attempted to register an Amazon /// Web Services account as a delegated administrator for an Amazon Web Services service /// that already has a delegated administrator. To complete this operation, you must first /// deregister any existing delegated administrators for this service. /// ///
/// /// EMAIL_VERIFICATION_CODE_EXPIRED: The email verification code is only valid for a limited /// period of time. You must resubmit the request and generate a new verfication code. /// ///
/// /// HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of handshakes that /// you can send in one day. /// ///
/// /// INVALID_PAYMENT_INSTRUMENT: You cannot remove an account because no supported payment /// method is associated with the account. Amazon Web Services does not support cards /// issued by financial institutions in Russia or Belarus. For more information, see Managing /// your Amazon Web Services payments. /// ///
/// /// MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account in this organization, /// you first must migrate the organization's management account to the marketplace that /// corresponds to the management account's address. For example, accounts with India /// addresses must be associated with the AISPL marketplace. All accounts in an organization /// must be associated with the same marketplace. /// ///
/// /// MASTER_ACCOUNT_MISSING_BUSINESS_LICENSE: Applies only to the Amazon Web Services /> /// Regions in China. To create an organization, the master must have a valid business /// license. For more information, contact customer support. /// ///
/// /// MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you must first provide /// a valid contact address and phone number for the management account. Then try the /// operation again. /// ///
/// /// MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the management account /// must have an associated account in the Amazon Web Services GovCloud (US-West) Region. /// For more information, see Organizations /// in the Amazon Web Services GovCloud User Guide. /// ///
/// /// MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization with this management /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MAX_DELEGATED_ADMINISTRATORS_FOR_SERVICE_LIMIT_EXCEEDED: You attempted to register /// more delegated administrators than allowed for the service principal. /// ///
/// /// MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the number of policies /// of a certain type that can be attached to an entity at one time. /// ///
/// /// MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed on this resource. /// /// ///
/// /// MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation with this member /// account, you first must associate a valid payment instrument, such as a credit card, /// with the account. Follow the steps at To /// leave an organization when all required account information has not yet been provided /// in the Organizations User Guide. /// ///
/// /// MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a policy from an /// entity that would cause the entity to have fewer than the minimum number of policies /// of a certain type required. /// ///
/// /// ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation that /// requires the organization to be configured to support all features. An organization /// that supports only consolidated billing features can't perform this operation. /// ///
/// /// OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is too many levels /// deep. /// ///
/// /// OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs that you can have /// in an organization. /// ///
/// /// POLICY_CONTENT_LIMIT_EXCEEDED: You attempted to create a policy that is larger than /// the maximum size. /// ///
/// /// POLICY_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of policies that /// you can have in an organization. /// ///
/// /// SERVICE_ACCESS_NOT_ENABLED: You attempted to register a delegated administrator before /// you enabled service access. Call the EnableAWSServiceAccess API first. /// ///
/// /// TAG_POLICY_VIOLATION: You attempted to create or update a resource with tags that /// are not compliant with the tag policy requirements for this account. /// ///
/// /// WAIT_PERIOD_ACTIVE: After you create an Amazon Web Services account, there is a waiting /// period before you can remove it from the organization. If you get an error that indicates /// that a wait period is required, try again in a few days. /// ///

/// /// DUPLICATE_TAG_KEY: Tag keys must be unique among the tags attached to the same entity. /// ///
/// /// IMMUTABLE_POLICY: You specified a policy that is managed by Amazon Web Services and /// can't be modified. /// ///
/// /// INPUT_REQUIRED: You must include a value for all required parameters. /// ///
/// /// INVALID_EMAIL_ADDRESS_TARGET: You specified an invalid email address for the invited /// account owner. /// ///
/// /// INVALID_ENUM: You specified an invalid value. /// ///
/// /// INVALID_ENUM_POLICY_TYPE: You specified an invalid policy type string. /// ///
/// /// INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid characters. /// ///
/// /// INVALID_LIST_MEMBER: You provided a list to a parameter that contains at least one /// invalid value. /// ///
/// /// INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter from /// the response to a previous call of the operation. /// ///
/// /// INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account, organization, /// or email) as a party. /// ///
/// /// INVALID_PATTERN: You provided a value that doesn't match the required pattern. /// ///
/// /// INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't match the /// required pattern. /// ///
/// /// INVALID_ROLE_NAME: You provided a role name that isn't valid. A role name can't begin /// with the reserved prefix AWSServiceRoleFor. /// ///
/// /// INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource Name (ARN) /// for the organization. /// ///
/// /// INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID. /// ///
/// /// INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system tag. You can’t /// add, edit, or delete system tag keys because they're reserved for Amazon Web Services /// use. System tags don’t count against your tags per resource limit. /// ///
/// /// MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter for the operation. /// ///
/// /// MAX_LENGTH_EXCEEDED: You provided a string parameter that is longer than allowed. /// ///
/// /// MAX_VALUE_EXCEEDED: You provided a numeric parameter that has a larger value than /// allowed. /// ///
/// /// MIN_LENGTH_EXCEEDED: You provided a string parameter that is shorter than allowed. /// ///
/// /// MIN_VALUE_EXCEEDED: You provided a numeric parameter that has a smaller value than /// allowed. /// ///
/// /// MOVING_ACCOUNT_BETWEEN_DIFFERENT_ROOTS: You can move an account only between entities /// in the same root. /// ///
/// /// TARGET_NOT_SUPPORTED: You can't perform the specified operation on that target entity. /// ///
/// /// UNRECOGNIZED_SERVICE_PRINCIPAL: You specified a service principal that isn't recognized. /// ///

/// /// /// The provided policy document doesn't meet the requirements of the specified policy /// type. For example, the syntax might be incorrect. For details about service control /// policy syntax, see Service /// Control Policy Syntax in the Organizations User Guide. /// /// /// Changes to the effective policy are in progress, and its contents can't be returned. /// Try the operation again later. /// /// /// We can't find a policy with the PolicyId that you specified. /// /// /// Organizations can't complete your request because of an internal service error. Try /// again later. /// /// /// You have sent too many requests in too short a period of time. The quota helps protect /// against denial-of-service attacks. Try again later. /// /// /// /// For information about quotas that affect Organizations, see Quotas /// for Organizationsin the Organizations User Guide. /// /// /// /// This action isn't available in the current Amazon Web Services Region. /// /// REST API Reference for UpdatePolicy Operation UpdatePolicyResponse UpdatePolicy(UpdatePolicyRequest request); ///

/// Initiates the asynchronous execution of the UpdatePolicy operation. ///

/// /// Container for the necessary parameters to execute the UpdatePolicy operation on AmazonOrganizationsClient. /// An AsyncCallback delegate that is invoked when the operation completes. /// A user-defined state object that is passed to the callback procedure. Retrieve this object from within the callback /// procedure using the AsyncState property. /// /// An IAsyncResult that can be used to poll or wait for results, or both; this value is also needed when invoking EndUpdatePolicy /// operation. /// REST API Reference for UpdatePolicy Operation IAsyncResult BeginUpdatePolicy(UpdatePolicyRequest request, AsyncCallback callback, object state); ///

/// Finishes the asynchronous execution of the UpdatePolicy operation. ///

/// /// The IAsyncResult returned by the call to BeginUpdatePolicy. /// /// Returns a UpdatePolicyResult from Organizations. /// REST API Reference for UpdatePolicy Operation UpdatePolicyResponse EndUpdatePolicy(IAsyncResult asyncResult); #endregion } }