I want to change the email address associated with the root user of a member account within AWS Organizations.
Short description
There are two ways to update the email address for the root user of an Organizations member account:
- Use the Organizations management account or a delegated admin account.
- Sign in as the root user for the member account that you want to update.
Resolution
Use the management account or delegated admin account
You can update the root email address of a member account from either the management account or a delegated admin account in an organization. To do so, you must turn on trusted access for the Account Management service. For information on how to turn on Account Management Service trusted access, see Enabling trusted access for AWS Account Management.
To update the root email of the member account from the management account, complete the following steps:
- Sign in to the AWS Organizations console as an IAM user or assume an IAM role in the organization's management account or delegated admin account. The IAM user or role must have account:StartPrimaryEmailUpdate and account:AcceptPrimaryEmailUpdate permissions.
- On the AWS accounts page, choose the member account that you want to update the root user email address for.
- In the Account details section, choose Actions, and then choose Update email address.
- For Email, enter the new email address for the root user, and then choose Save. This sends a one-time password (OTP) to the new email address.
Note: You can't use an email address that's already in use by another AWS account. For more information about valid email address rules, see Request Parameters.
- For Verification code, enter the code that was sent to the new email address in the previous step, and then choose Confirm. This action commits the update to the root user email address for the member account.
Note: If you leave the Account details page before you complete the verification step, then you must reopen the Account details page to continue.
- Choose Actions, and then choose Complete email update. In the Complete previous email update section, enter the email address that you entered earlier and the verification code, and then choose Confirm.
Note: The OTP expires 24 hours after it's created. If you don't confirm the OTP within 24 hours, then you must repeat the steps.
Sign in as the root user for the member account that you want to update
To update the root email address of the member account, complete the following steps:
- Sign in to the AWS Management Console as the root user for the account that you want to update.
- Choose your account name, and then choose Account.
- On the Account page, next to Account Settings, choose Edit.
Note: If you didn't log in as the root user, then you don't see the Edit option.
- On the Update accounts settings page, choose Edit under the Email field to update the email address.
- On the Update your email address page, enter the new email address under New email address and Confirm new email address. Enter the root user password under Password, and then choose Done. This action sends a one-time password (OTP) to the new email address.
- On the Verify your new email address page, enter the verification code under Verification code, and then choose Save changes.
Note: The verification code email might take a few minutes to arrive. If the email doesn't arrive in your inbox after a few minutes, then check all your email folders, such as the inbox and spam folders.
Related information
Accessing a member account as the root user
Resetting lost or forgotten passwords or access keys for AWS
Troubleshooting issues with the root user