Viewing organizational view - Amazon Health
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Viewing organizational view

You can use the Amazon Health console to get a centralized view for health events in your Amazon organization.

Organizational view is available in the Amazon Health console for all Amazon Web Services Support plans at no additional cost.

Note

If you want to allow users access to this feature in the management account, they must have permissions such as the AWSHealthFullAccess policy. For more information, see Amazon Health identity-based policy examples.

Viewing organizational view events (Console)

After you enable organizational view, Amazon Health displays health events for all accounts in your organization.

When an account joins your organization, Amazon Health automatically adds the account to organizational view. When an account leaves your organization, new events from that account are no longer logged to organizational view. However, existing events remain and you can still query them up to the 90-day limit.

Amazon Web Services revokes the account's administrative access from the service and deactivates any policies that were managed by the administrator account. The protections that were provided by these policies are stopped across the organization.

  • Before closing your account, back up and then delete your policy data and other account resources. You will no longer have access to them after you close the account.

    • The account resources are subject to the policies of Amazon Web Services operating partners: Sinnet in the China (Beijing) Region and NWCD in the China (Ningxia) Region. Account closure procedures in China might take longer than in other Amazon Web Services Regions.

  • For more information, see Closing an account.

Note

When you enable this feature, the Amazon Health console can display public events from the Amazon Health Dashboard – Service health for the last 7 days. These public events aren't specific to accounts in your organization. Events from the Amazon Health Dashboard – Service health provide public information about the regional availability of Amazon services.

You can view organizational view events in the following pages:.

Open and Recent Issues

You can use the Open and recent issues tab to view events that might affect your Amazon infrastructure, such as changes to Amazon Web Services services and resources that affect your organization.

To view organizational view events

  1. Open your Amazon Health Dashboard at https://health.aws.amazon.com/health/home.

  2. In the navigation pane, under Your organization health, choose Open and recent issues to view recently reported events.

  3. Choose an event. On the Details tab, you can review the following information about the event:

    • Event name

    • Status

    • Region / Availability Zone

    • Affected accounts

    • Start time

    • End time

    • Category

    • Description

Scheduled Changes

Use the Scheduled changes tab to view upcoming events that might affect your organization. These events can include scheduled maintenance activities for services.

Other Notifications

Use the Notifications tab to view all other notifications and ongoing events from the past seven days that might affect your organization. This can include events, such as certificate rotations, billing notifications, and security vulnerabilities.

Event Log

You can also use the Event log tab to view Amazon Health events for organizational view. The column layout and behavior are similar to the Open and recent issues tab, except that the Event log tab includes additional columns and filter options, such as the Event category, Status, and Start time.

To view organizational view events in the Event log tab

  1. Open your Amazon Health Dashboard at https://health.aws.amazon.com/health/home.

  2. In the navigation pane, under Your organization health, choose Event log.

  3. Under Event log, choose the event name. You can review the following information about the event:

    • Event name

    • Status

    • Region / Availability Zone

    • Affected accounts

    • Start time

    • End time

    • Category

    • Description

Viewing affected accounts and resources (Console)

Under Your organization health, you can view the accounts in your organization that are affected by the event and any related resources. For example, if there's an upcoming event for Amazon Elastic Compute Cloud (Amazon EC2) instance maintenance, accounts in your organization that have Amazon EC2 instances can appear in the Details tab. You can identify the specific resources and then contact the account owner.

To view affected accounts and resources

  1. Open your Amazon Health Dashboard at https://health.aws.amazon.com/health/home.

  2. In the navigation pane, under Your organization health, choose one of the tabs.

  3. Choose an event that has a value for Affected accounts.

  4. Choose the Affected accounts tab.

  5. Choose Show account details to view the following information for the accounts:

    • Account ID

    • Account name

    • Primary email

    • Organizational unit (OU)

  6. Expand the account to view the affected resources.

  7. If there are more than 10 resources, choose View all resources to view them.

  8. To filter by account ID for this specific event, do the following:

    1. On the Affected accounts tab, choose Add filter, choose Account ID, and then enter the account ID. You can only enter one account ID at a time.

    2. Choose Apply. The account that you entered appears in the list.

Viewing organizational view events (CLI)

After you enable this feature, Amazon Health starts to record events that affect accounts in the organization. When an account joins your organization, Amazon Health automatically adds the account to organizational view.

Note

Amazon Health doesn't record events that occurred in your organization before you enabled organizational view.

When an account leaves your organization, new events from that account are no longer logged to organizational view. However, existing events remain and you can still query them up to the 90-day limit.

Amazon Web Services revokes the account's administrative access from the service and deactivates any policies that were managed by the administrator account. The protections that were provided by these policies are stopped across the organization.

  • Before closing your account, back up and then delete your policy data and other account resources. You will no longer have access to them after you close the account.

    • The account resources are subject to the policies of Amazon Web Services operating partners: Sinnet in the China (Beijing) Region and NWCD in the China (Ningxia) Region. Account closure procedures in China might take longer than in other Amazon Web Services Regions.

  • For more information, see Closing an account.

You can use the Amazon Health API operations to return events from organizational view.

Example : Describe organizational view events

The following Amazon CLI command returns health events for Amazon accounts in your organization. 

aws health describe-events-for-organization --region us-east-1