- 最新
- 投票最多
- 评论最多
To properly close an account under an organization, please follow the steps below:
-
Activate the Account: If the account is currently suspended, you need to reactivate it before proceeding with the closure process. Contact AWS Support for assistance in reactivating the account.
-
Remove from the Organization: Once the account is active, navigate to the AWS Organizations console and remove the account from the organization. This step detaches the account from the organization's management and control.
-
Review Dependencies: Before closing the account, ensure that there are no dependencies or resources tied to the account that may be required by other accounts or services. Review any cross-account roles, shared resources, or integrations and make the necessary adjustments.
-
Communicate with Organization Members: Inform the members of the organization about the impending account closure. Notify them of any changes or actions they need to take, such as updating cross-account access or transferring resources.
-
Close the Account: Once you have verified that the account is no longer needed and has been appropriately detached from the organization, you can proceed with closing the account. Follow the AWS documentation or contact AWS Support for guidance on the account closure process.
It's important to note that closing an account permanently deletes all associated data and resources, so ensure that you have backed up any necessary information before initiating the closure.
Please consult the official AWS documentation or contact AWS Support for detailed instructions and assistance in closing an account under an organization.
As described in this document, "close_on_deletion" must be set to true in order to delete the file.
Is "close_on_deletion" set to true?
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/organizations_account
By default, deleting this Terraform resource will only remove an AWS account from an organization. You must set the close_on_deletion flag to true to close the account. It is worth noting that quotas are enforced when using the close_on_deletion argument, which can produce a CLOSE_ACCOUNT_QUOTA_EXCEEDED error, and require you to close the account manually.
This document contained a quota description of accounts that can be cancelled within 30 days. Are you caught in the quota here? https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_close.html#orgs_account_close_impacts
You can only close 10% of member accounts within a rolling 30 day period. This quota is not bound by a calendar month, but starts when you close an account. Within 30 days of that initial account closure, you can't exceed the 10% account closure limit. The minimum account closure is 10 and the maximum account closure is 200, even if 10% of accounts exceeds 200. For more information about Organizations quotas, see Quotas for AWS Organizations.
I doubt it is that because this is the first and only account that I've tried to delete.
What happens if it is run as the root user? Is it possible to delete it as root user?
Even as root user the button to delete is deactivated so I cannot even try on the Console and with CLI I have the access token of my user with admin access and there I cannot delete or remove the account from the organization. After searching the issue online I've seen that some people removed the member account from their organization by adding a payment method and basically making the account standalone. However, I would like to delete the account as well. Is this simply not possible maybe and I have to wait a certain amount of time before it gets deleted?
Yes, it is. My terraform resources looks something like this
resource "aws_organizations_account" "account" {
name = var.AccountName
email = var.myEmail
close_on_deletion = true
iam_user_access_to_billing = "DENY"
parent_id = aws_organizations_organizational_unit.example_ou.id
}
相关内容
AWS 官方已更新 3 年前
I will do that, thanks!