I want to remove a member account from an organization, but I can't sign in to the member account
Last updated: 2019-05-14
I want to remove a member account from an organization and turn that account into a standalone account. However, I can't sign in to the member account. What should I do?
To gain access to a member account in an organization, first try the following:
- Contact the administrator of the member account and ask them to grant you access.
- If you have access to the email address associated with the account, but have forgotten the password, reset the password.
If the above strategies don't work, use AWS Identity and Access Management (IAM) to assume an administrator's role for the account:
- If the account was invited to the organization, first create and assume an admin role for the account.
- If the account was created to be part of the organization, first add permissions to assume an administrator's IAM role for the member account. Then, switch to the IAM role in the console.
After you assume an administrator's role for the member account, do the following:
- Open the IAM console, choose Users from the navigation pane, and then choose Add user.
- Enter a user name, and then select AWS Management Console access.
- Select Custom password, and then enter a password. Clear Require password reset.
- Choose Next: Permissions.
- Choose Attach existing policies directly, choose AdministratorAccess from the list of policies, and then choose Next: Review.
- Review the details of your new IAM user, and then choose Create user.
After you complete these steps, verify the necessary details and remove the account from the organization.
Note: If you want to close a member account instead, follow the instructions at Closing an AWS Account. You must be able to sign in as the root user in order to close an account.