[ aws . detective ]



Deletes one or more member accounts from the master account behavior graph. This operation can only be called by a Detective master account. That account cannot use DeleteMembers to delete their own account from the behavior graph. To disable a behavior graph, the master account uses the DeleteGraph API method.

See also: AWS API Documentation

See ‘aws help’ for descriptions of global parameters.


--graph-arn <value>
--account-ids <value>
[--cli-input-json | --cli-input-yaml]
[--generate-cli-skeleton <value>]
[--cli-auto-prompt <value>]


--graph-arn (string)

The ARN of the behavior graph to delete members from.

--account-ids (list)

The list of AWS account identifiers for the member accounts to delete from the behavior graph.



"string" "string" ...

--cli-input-json | --cli-input-yaml (string) Reads arguments from the JSON string provided. The JSON string follows the format provided by --generate-cli-skeleton. If other arguments are provided on the command line, those values will override the JSON-provided values. It is not possible to pass arbitrary binary values using a JSON-provided value as the string will be taken literally. This may not be specified along with --cli-input-yaml.

--generate-cli-skeleton (string) Prints a JSON skeleton to standard output without sending an API request. If provided with no value or the value input, prints a sample input JSON that can be used as an argument for --cli-input-json. Similarly, if provided yaml-input it will print a sample input YAML that can be used with --cli-input-yaml. If provided with the value output, it validates the command inputs and returns a sample output JSON for that command.

--cli-auto-prompt (boolean) Automatically prompt for CLI input parameters.

See ‘aws help’ for descriptions of global parameters.


To remove member accounts from a behavior graph

The following delete-members example removes two member accounts from the specified behavior graph.

aws detective delete-members \
    --account-ids 444455556666 123456789012 \
    --graph-arn arn:aws:detective:us-east-1:111122223333:graph:123412341234


   "AccountIds": [ "444455556666", "123456789012" ],
   "UnprocessedAccounts": [ ]

For more information, see Removing Member Accounts from a Behavior Graph in the Amazon Detective Administration Guide.


AccountIds -> (list)

The list of AWS account identifiers for the member accounts that Detective successfully deleted from the behavior graph.


UnprocessedAccounts -> (list)

The list of member accounts that Detective was not able to delete from the behavior graph. For each member account, provides the reason that the deletion could not be processed.


A member account that was included in a request but for which the request could not be processed.

AccountId -> (string)

The AWS account identifier of the member account that was not processed.

Reason -> (string)

The reason that the member account request could not be processed.