Control: AWS > Organizations > Organization Root > Approved

Take an action when an AWS Organizations organization root is not approved based on AWS > Organizations > Organization Root > Approved > * policies.

The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.

See Approved for more information.

Resource Types

This control targets the following resource types:

AWS > Organizations > Organization Root

Primary Policies

The following policies can be used to configure this control:

Quick Actions

In Your Workspace

Developers

Control Type URI

tmod:@turbot/aws-organizations#/control/types/organizationRootApproved

Category URI

tmod:@turbot/turbot#/control/categories/resourceApproved

GraphQL

query controlType(id: "tmod:@turbot/aws-organizations#/control/types/organizationRootApproved") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-organizations#/control/types/organizationRootApproved'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-organizations#/control/types/organizationRootApproved"