# UpdateCloudFrontOriginAccessIdentity
<a name="API_UpdateCloudFrontOriginAccessIdentity"></a>

Update an origin access identity.

## Request Syntax
<a name="API_UpdateCloudFrontOriginAccessIdentity_RequestSyntax"></a>

```
PUT /2020-05-31/origin-access-identity/cloudfront/Id/config HTTP/1.1
<?xml version="1.0" encoding="UTF-8"?>
<CloudFrontOriginAccessIdentityConfig xmlns="http://cloudfront.amazonaws.com/doc/2020-05-31/">
   <CallerReference>string</CallerReference>
   <Comment>string</Comment>
</CloudFrontOriginAccessIdentityConfig>
```

## URI Request Parameters
<a name="API_UpdateCloudFrontOriginAccessIdentity_RequestParameters"></a>

The request does not use any URI parameters.

## Request Body
<a name="API_UpdateCloudFrontOriginAccessIdentity_RequestBody"></a>

The request accepts the following data in XML format.

 ** [CloudFrontOriginAccessIdentityConfig](#API_UpdateCloudFrontOriginAccessIdentity_RequestSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-request-CloudFrontOriginAccessIdentityConfig"></a>
Root level tag for the CloudFrontOriginAccessIdentityConfig parameters.  
Required: Yes

 ** [CallerReference](#API_UpdateCloudFrontOriginAccessIdentity_RequestSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-request-CallerReference"></a>
A unique value (for example, a date-time stamp) that ensures that the request can't be replayed.  
If the value of `CallerReference` is new (regardless of the content of the `CloudFrontOriginAccessIdentityConfig` object), a new origin access identity is created.  
If the `CallerReference` is a value already sent in a previous identity request, and the content of the `CloudFrontOriginAccessIdentityConfig` is identical to the original request (ignoring white space), the response includes the same information returned to the original request.  
If the `CallerReference` is a value you already sent in a previous request to create an identity, but the content of the `CloudFrontOriginAccessIdentityConfig` is different from the original request, CloudFront returns a `CloudFrontOriginAccessIdentityAlreadyExists` error.   
Type: String  
Required: Yes

 ** [Comment](#API_UpdateCloudFrontOriginAccessIdentity_RequestSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-request-Comment"></a>
A comment to describe the origin access identity. The comment cannot be longer than 128 characters.  
Type: String  
Required: Yes

## Response Syntax
<a name="API_UpdateCloudFrontOriginAccessIdentity_ResponseSyntax"></a>

```
HTTP/1.1 200
<?xml version="1.0" encoding="UTF-8"?>
<CloudFrontOriginAccessIdentity>
   <CloudFrontOriginAccessIdentityConfig>
      <CallerReference>string</CallerReference>
      <Comment>string</Comment>
   </CloudFrontOriginAccessIdentityConfig>
   <Id>string</Id>
   <S3CanonicalUserId>string</S3CanonicalUserId>
</CloudFrontOriginAccessIdentity>
```

## Response Elements
<a name="API_UpdateCloudFrontOriginAccessIdentity_ResponseElements"></a>

If the action is successful, the service sends back an HTTP 200 response.

The following data is returned in XML format by the service.

 ** [CloudFrontOriginAccessIdentity](#API_UpdateCloudFrontOriginAccessIdentity_ResponseSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-response-CloudFrontOriginAccessIdentity"></a>
Root level tag for the CloudFrontOriginAccessIdentity parameters.  
Required: Yes

 ** [CloudFrontOriginAccessIdentityConfig](#API_UpdateCloudFrontOriginAccessIdentity_ResponseSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-response-CloudFrontOriginAccessIdentityConfig"></a>
The current configuration information for the identity.  
Type: [CloudFrontOriginAccessIdentityConfig](API_CloudFrontOriginAccessIdentityConfig.md) object

 ** [Id](#API_UpdateCloudFrontOriginAccessIdentity_ResponseSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-response-Id"></a>
The ID for the origin access identity, for example, `E74FTE3AJFJ256A`.   
Type: String

 ** [S3CanonicalUserId](#API_UpdateCloudFrontOriginAccessIdentity_ResponseSyntax) **   <a name="cloudfront-UpdateCloudFrontOriginAccessIdentity-response-S3CanonicalUserId"></a>
The Amazon S3 canonical user ID for the origin access identity, used when giving the origin access identity read permission to an object in Amazon S3.  
Type: String

## Errors
<a name="API_UpdateCloudFrontOriginAccessIdentity_Errors"></a>

For information about the errors that are common to all actions, see [Common Error Types](CommonErrors.md).

 ** AccessDenied **   
Access denied.  
HTTP Status Code: 403

 ** IllegalUpdate **   
The update contains modifications that are not allowed.  
HTTP Status Code: 400

 ** InconsistentQuantities **   
The value of `Quantity` and the size of `Items` don't match.  
HTTP Status Code: 400

 ** InvalidArgument **   
An argument is invalid.  
HTTP Status Code: 400

 ** InvalidIfMatchVersion **   
The `If-Match` version is missing or not valid.  
HTTP Status Code: 400

 ** MissingBody **   
This operation requires a body. Ensure that the body is present and the `Content-Type` header is set.  
HTTP Status Code: 400

 ** NoSuchCloudFrontOriginAccessIdentity **   
The specified origin access identity does not exist.  
HTTP Status Code: 404

 ** PreconditionFailed **   
The precondition in one or more of the request fields evaluated to `false`.  
HTTP Status Code: 412

## See Also
<a name="API_UpdateCloudFrontOriginAccessIdentity_SeeAlso"></a>

For more information about using this API in one of the language-specific AWS SDKs, see the following:
+  [AWS Command Line Interface V2](https://docs.aws.amazon.com/goto/cli2/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for .NET V4](https://docs.aws.amazon.com/goto/DotNetSDKV4/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for C\$1\$1](https://docs.aws.amazon.com/goto/SdkForCpp/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for Go v2](https://docs.aws.amazon.com/goto/SdkForGoV2/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for Java V2](https://docs.aws.amazon.com/goto/SdkForJavaV2/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for JavaScript V3](https://docs.aws.amazon.com/goto/SdkForJavaScriptV3/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for Kotlin](https://docs.aws.amazon.com/goto/SdkForKotlin/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for PHP V3](https://docs.aws.amazon.com/goto/SdkForPHPV3/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for Python](https://docs.aws.amazon.com/goto/boto3/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity) 
+  [AWS SDK for Ruby V3](https://docs.aws.amazon.com/goto/SdkForRubyV3/cloudfront-2020-05-31/UpdateCloudFrontOriginAccessIdentity)