enable-organization-admin-account¶

Description¶

Designates the Security Hub administrator account for an organization. Can only be called by the organization management account.

Synopsis¶

  enable-organization-admin-account
--admin-account-id <value>
[--cli-input-json | --cli-input-yaml]
[--generate-cli-skeleton <value>]

Options¶

--admin-account-id (string)

The Amazon Web Services account identifier of the account to designate as the Security Hub administrator account.

--cli-input-json | --cli-input-yaml (string) Reads arguments from the JSON string provided. The JSON string follows the format provided by --generate-cli-skeleton. If other arguments are provided on the command line, those values will override the JSON-provided values. It is not possible to pass arbitrary binary values using a JSON-provided value as the string will be taken literally. This may not be specified along with --cli-input-yaml.

--generate-cli-skeleton (string) Prints a JSON skeleton to standard output without sending an API request. If provided with no value or the value input, prints a sample input JSON that can be used as an argument for --cli-input-json. Similarly, if provided yaml-input it will print a sample input YAML that can be used with --cli-input-yaml. If provided with the value output, it validates the command inputs and returns a sample output JSON for that command.

See ‘aws help’ for descriptions of global parameters.

Examples¶

To designate an organization account as a Security Hub administrator account

The following enable-organization-admin-account example designates the specified account as a Security Hub administrator account.

aws securityhub enable-organization-admin-account \
    --admin-account-id 777788889999

This command produces no output.

For more information, see Designating a Security Hub administrator account in the AWS Security Hub User Guide.

Output¶

None

Table of Contents

Feedback

User Guide