Listing Enrolled Core Accounts

Function

This API is used to list all enrolled core accounts in an organization.

Authorization Information

Each account root user has all the permissions required to call all APIs, but IAM users must be assigned the following required identity policy-based permissions. For details about the required permissions, see Permissions Policies and Supported Actions.

Action	Access Level	Resource Type (*: required)	Condition Key	Alias	Dependencies
rgc:managedCoreAccount:get	Read	-	-	-	-

URI

GET /v1/managed-organization/managed-core-accounts

**Table 1** Query Parameters
Parameter	Mandatory	Type	Description
account_type	Yes	String	Type of an enrolled account, which can be LOGGING (logging account), SECURITY (security account), or PRIMARY (management account).

Request Parameters

None

Response Parameters

Status code: 200

**Table 2** Response body parameters
Parameter	Type	Description
account_id	String	ID of an enrolled account.
core_resource_mappings	Map<String,String>	Mappings of core resources to fields.

Status code: 403

**Table 3** Response body parameters
Parameter	Type	Description
error_code	String	Error code.
error_msg	String	Error message.
request_id	String	Unique ID of the request.
encoded_authorization_message	String	Encrypted error message.
details	Array of ForbiddenErrorDetail objects	Error message indicating no permissions for cross-service invoking.

**Table 4** ForbiddenErrorDetail
Parameter	Type	Description
error_code	String	Error code.
error_msg	String	Error message.

Example Requests

Listing all enrolled core accounts in an organization

GET https://{endpoint}/v1/managed-organization/managed-core-account

Example Responses

Status code: 200

Request succeeded.

{
  "account_id" : "string",
  "core_resource_mappings" : {
    "stack_set_urn" : "string",
    "cross_account_admin_agency" : "string",
    "cross_account_read_only_agency" : "string",
    "notify_email" : "string"
  }
}