trustedadvisor:ListOrganizationRecommendationAccounts is a List access-level action in the trustedadvisor service. Grants permission to list the accounts that own the resources for an AWS Organization aggregate recommendation. This API only supports prioritized recommendations
This action does not support resource-level permissions; use "Resource": "*" in your policy.
No condition keys are documented for this action.
A minimal policy that allows trustedadvisor:ListOrganizationRecommendationAccounts. Replace "Resource": "*" with a specific ARN to follow least privilege.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowTrustedadvisorListOrganizationRecommendationAccounts",
"Effect": "Allow",
"Action": "trustedadvisor:ListOrganizationRecommendationAccounts",
"Resource": "*"
}
]
}