When using Create Members as an organizations delegated administrator this action will enable GuardDuty in the added member accounts, with the exception of the organization delegated administrator account, which must enable GuardDuty prior to being added as a member.

If you are adding accounts by invitation use this action after GuardDuty has been enabled in potential member accounts and before using Invite Members.

To learn more, visit the AWS documentation.

Basic Parameters

ParameterDescription
AWS Region(s)Enter the desired AWS Region(s).To execute the action in multiple regions, provide a comma-separated list.For example: us-east-1,eu-west-2.If you wish to run the action in all available regions, use the asterisk symbol (*) instead.
Account DetailsA comma-separated list of account IDs and email addresses pairs of the accounts that you want to associate with the GuardDuty administrator account.The JSON syntax looks like the following:[ {"accountId": "1234567890","email": "example@gmail.com"}, {"accountId": "1234567890","email": "example@gmail.com"}]
Detector IDThe unique ID of the detector of the GuardDuty account that you want to associate member accounts with.

Advanced Parameters

ParameterDescription
Disable XML To JSON Auto ConvertWhen checked, XML responses are not automatically converted into JSON format.

Example Output

{    "UnprocessedAccounts": [        {            "AccountId": "string",            "Result": "string"        }    ]}

Workflow Library Example

Guardduty Create Members with Aws and Send Results Via Email

Preview this Workflow on desktop