Why is my invitation link to join an AWS organization not working?

2 minute read

I’ve invited an AWS account to join the organization but the invited account can’t see it. Or, my invitation link isn’t working.

Resolution

When you send an invitation to an AWS account to join an organization, the recipient account owner must accept the invitation.

If you have problems with sending invitations, follow these steps to troubleshoot the issue:

Make sure that you are using the email address associated with the management account.

Verify that you have the following permissions:

organizations:describeOrganization
organizations:InviteAccountToOrganization

Verify that the IAM role or user has the correct permissions

After you send an invitation, view all the linked AWS accounts in your organization.
Note: When you view the linked AWS accounts, you can cancel pending invitations.

If you can't see the pending invitations, make sure that the management account's AWS Identity and Management (IAM) role or user has these permissions:

organizations:ListHandshakesForOrganization
organizations:DescribeOrganizations (required only when using the AWS Organizations console)
organizations:CancelHandshake

View the received invitations

When you send an invitation, the AWS account that receives the invitation can accept or decline it. If you can't see the invitation, then check these conditions:

Make sure that the invited AWS account is a standalone account. A standalone account is an account that isn't a member account or a management account of another organization.

If the invited account is a member of another organization, the account must first leave that organization before joining another.
If the invited account is a management account for an organization, the management account must first remove all member accounts from its organization. The account must also delete the organization before accepting an invitation.

If the invited account is a standalone account and you still can't view the invitation, then make sure that you have these permissions:

organizations:ListHandshakesForAccount-Required (to see the list of invitations in the AWS Organizations console)
organizations:AcceptHandshake
organizations:DeclineHandshake
iam:CreateServiceLinkedRole

If you performed these troubleshooting actions and still experience issues with invitations, contact AWS Support for further assistance.

Related information

Inviting an AWS account to join your organization

Topics

Management & Governance

Relevant content

What are the challenges and issues when inviting an account to my organization?
John Arysthon
asked 5 months ago
Another account accepted my organization invitation, but no account appear
Accepted Answer
PlAwAnSaI
asked 2 years ago
Risks of joining an account to an organization
rePost-User-9358417
asked a year ago
Failed to accept the invitation
Lottie
asked 4 months ago
Joining an organization: User does not exist
kay
asked 9 months ago
Why can't I join an organization in AWS Organizations?
AWS OFFICIALUpdated 2 years ago
How do I remove a member account from an organization in AWS Organizations when I can't sign in to the member account?
AWS OFFICIALUpdated a year ago
Why do I receive the error "You can only join an organization whose Seller of Record is same as your account" when I'm trying to join an organization?
AWS OFFICIALUpdated 2 years ago
How do I move an account from an existing AWS Organization to another AWS Organization?
AWS OFFICIALUpdated 7 months ago
Avoiding additional bills when migrating accounts between AWS Organizations
EXPERT
Andre Portela
published 5 months ago