By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Access IAM Identity Center details from member account with CLI | An error occurred (ResourceNotFoundException) when calling the DescribeGroup operation: IdentityStore not present for IdentityStoreId

0

I am trying to execute

aws identitystore describe-group
--identity-store-id d-xxxxxx
--group-id 51db35d0-40xx-70xx-10ae-xxxxxxx

from the member account of an AWS organisation which has IAM identity center setup. But it fails with the error of resource not found. An error occurred (ResourceNotFoundException) when calling the DescribeGroup operation: IdentityStore not present for IdentityStoreId: d-xxxxxx

Althought the CLI reference document shows this note - Enter image description here

Topics
Management & GovernanceSecurity, Identity, & Compliance
Tags
AWS Command Line InterfaceAWS IAM Identity Center
Language
English
Kim
asked 17 days ago248 views
1 Answer
0

Hi There

You would need to run that command in the Management Account where Identity Center is provisioned. Looks like you are trying to describe it from a member account. You will need to either run the command from the management account, or assume a role in the management account. See https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-role.html#cli-configure-role-xaccount

profile pictureAWS
EXPERT
Matt-B
answered 17 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content