OpsWorksCM: New-OWCMServer Cmdlet | AWS Tools for PowerShell

Synopsis

Calls the AWS OpsWorksCM CreateServer API operation.

Syntax

New-OWCMServer
-ServerName <String>
-AssociatePublicIpAddress <Boolean>
-BackupId <String>
-BackupRetentionCount <Int32>
-CustomCertificate <String>
-CustomDomain <String>
-CustomPrivateKey <String>
-DisableAutomatedBackup <Boolean>
-Engine <String>
-EngineAttribute <EngineAttribute[]>
-EngineModel <String>
-EngineVersion <String>
-InstanceProfileArn <String>
-InstanceType <String>
-KeyPair <String>
-PreferredBackupWindow <String>
-PreferredMaintenanceWindow <String>
-SecurityGroupId <String[]>
-ServiceRoleArn <String>
-SubnetId <String[]>
-Tag <Tag[]>
-Select <String>
-PassThru <SwitchParameter>
-Force <SwitchParameter>
-ClientConfig <AmazonOpsWorksCMConfig>

Description

Creates and immedately starts a new server. The server is ready to use when it is in the HEALTHY state. By default, you can create a maximum of 10 servers. This operation is asynchronous. A LimitExceededException is thrown when you have created the maximum number of servers (10). A ResourceAlreadyExistsException is thrown when a server with the same name already exists in the account. A ResourceNotFoundException is thrown when you specify a backup ID that is not valid or is for a backup that does not exist. A ValidationException is thrown when parameters of the request are not valid. If you do not specify a security group by adding the SecurityGroupIds parameter, AWS OpsWorks creates a new security group. Chef Automate: The default security group opens the Chef server to the world on TCP port 443. If a KeyName is present, AWS OpsWorks enables SSH access. SSH is also open to the world on TCP port 22. Puppet Enterprise: The default security group opens TCP ports 22, 443, 4433, 8140, 8142, 8143, and 8170. If a KeyName is present, AWS OpsWorks enables SSH access. SSH is also open to the world on TCP port 22. By default, your server is accessible from any IP address. We recommend that you update your security group rules to allow access from known IP addresses and address ranges only. To edit security group rules, open Security Groups in the navigation pane of the EC2 management console. To specify your own domain for a server, and provide your own self-signed or CA-signed certificate and private key, specify values for CustomDomain, CustomCertificate, and CustomPrivateKey.

Parameters

-AssociatePublicIpAddress <Boolean>

Associate a public IP address with a server that you are launching. Valid values are true or false. The default value is true.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-BackupId <String>

If you specify this field, AWS OpsWorks CM creates the server by using the backup represented by BackupId.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-BackupRetentionCount <Int32>

The number of automated backups that you want to keep. Whenever a new backup is created, AWS OpsWorks CM deletes the oldest backups if this number is exceeded. The default value is 1.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-ClientConfig <AmazonOpsWorksCMConfig>

Amazon.PowerShell.Cmdlets.OWCM.AmazonOpsWorksCMClientCmdlet.ClientConfig

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-CustomCertificate <String>

A PEM-formatted HTTPS certificate. The value can be be a single, self-signed certificate, or a certificate chain. If you specify a custom certificate, you must also specify values for CustomDomain and CustomPrivateKey. The following are requirements for the CustomCertificate value:

You can provide either a self-signed, custom certificate, or the full certificate chain.
The certificate must be a valid X509 certificate, or a certificate chain in PEM format.
The certificate must be valid at the time of upload. A certificate can't be used before its validity period begins (the certificate's NotBefore date), or after it expires (the certificate's NotAfter date).
The certificate’s common name or subject alternative names (SANs), if present, must match the value of CustomDomain.
The certificate must match the value of CustomPrivateKey.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-CustomDomain <String>

An optional public endpoint of a server, such as https://aws.my-company.com. To access the server, create a CNAME DNS record in your preferred DNS service that points the custom domain to the endpoint that is generated when the server is created (the value of the CreateServer Endpoint attribute). You cannot access the server by using the generated Endpoint value if the server is using a custom domain. If you specify a custom domain, you must also specify values for CustomCertificate and CustomPrivateKey.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-CustomPrivateKey <String>

A private key in PEM format for connecting to the server by using HTTPS. The private key must not be encrypted; it cannot be protected by a password or passphrase. If you specify a custom private key, you must also specify values for CustomDomain and CustomCertificate.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-DisableAutomatedBackup <Boolean>

Enable or disable scheduled backups. Valid values are true or false. The default value is true.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-Engine <String>

The configuration management engine to use. Valid values include ChefAutomate and Puppet.

Required?	True
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-EngineAttribute <EngineAttribute[]>

Optional engine attributes on a specified server. Attributes accepted in a Chef createServer request:

CHEF_AUTOMATE_PIVOTAL_KEY: A base64-encoded RSA public key. The corresponding private key is required to access the Chef API. When no CHEF_AUTOMATE_PIVOTAL_KEY is set, a private key is generated and returned in the response.
CHEF_AUTOMATE_ADMIN_PASSWORD: The password for the administrative user in the Chef Automate web-based dashboard. The password length is a minimum of eight characters, and a maximum of 32. The password can contain letters, numbers, and special characters (!/@#$%^&+=_). The password must contain at least one lower case letter, one upper case letter, one number, and one special character. When no CHEF_AUTOMATE_ADMIN_PASSWORD is set, one is generated and returned in the response.

Attributes accepted in a Puppet createServer request:

PUPPET_ADMIN_PASSWORD: To work with the Puppet Enterprise console, a password must use ASCII characters.
PUPPET_R10K_REMOTE: The r10k remote is the URL of your control repository (for example, ssh://git@your.git-repo.com:user/control-repo.git). Specifying an r10k remote opens TCP port 8170.
PUPPET_R10K_PRIVATE_KEY: If you are using a private Git repository, add PUPPET_R10K_PRIVATE_KEY to specify a PEM-encoded private SSH key.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	EngineAttributes

-EngineModel <String>

The engine model of the server. Valid values in this release include Monolithic for Puppet and Single for Chef.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-EngineVersion <String>

The major release version of the engine that you want to use. For a Chef server, the valid value for EngineVersion is currently 2. For a Puppet server, valid values are 2019 or 2017.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-Force <SwitchParameter>

This parameter overrides confirmation prompts to force the cmdlet to continue its operation. This parameter should always be used with caution.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-InstanceProfileArn <String>

The ARN of the instance profile that your Amazon EC2 instances use. Although the AWS OpsWorks console typically creates the instance profile for you, if you are using API commands instead, run the service-role-creation.yaml AWS CloudFormation template, located at https://s3.amazonaws.com/opsworks-cm-us-east-1-prod-default-assets/misc/opsworks-cm-roles.yaml. This template creates a CloudFormation stack that includes the instance profile you need.

Required?	True
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-InstanceType <String>

The Amazon EC2 instance type to use. For example, m5.large.

Required?	True
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-KeyPair <String>

The Amazon EC2 key pair to set for the instance. This parameter is optional; if desired, you may specify this parameter to connect to your instances by using SSH.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-PassThru <SwitchParameter>

Changes the cmdlet behavior to return the value passed to the ServerName parameter. The -PassThru parameter is deprecated, use -Select '^ServerName' instead. This parameter will be removed in a future version.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-PreferredBackupWindow <String>

The start time for a one-hour period during which AWS OpsWorks CM backs up application-level data on your server if automated backups are enabled. Valid values must be specified in one of the following formats:

HH:MM for daily backups
DDD:HH:MM for weekly backups

MM must be specified as 00. The specified time is in coordinated universal time (UTC). The default value is a random, daily start time.Example:08:00, which represents a daily start time of 08:00 UTC.Example:Mon:08:00, which represents a start time of every Monday at 08:00 UTC. (8:00 a.m.)

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-PreferredMaintenanceWindow <String>

The start time for a one-hour period each week during which AWS OpsWorks CM performs maintenance on the instance. Valid values must be specified in the following format: DDD:HH:MM. MM must be specified as 00. The specified time is in coordinated universal time (UTC). The default value is a random one-hour period on Tuesday, Wednesday, or Friday. See TimeWindowDefinition for more information.Example:Mon:08:00, which represents a start time of every Monday at 08:00 UTC. (8:00 a.m.)

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-SecurityGroupId <String[]>

A list of security group IDs to attach to the Amazon EC2 instance. If you add this parameter, the specified security groups must be within the VPC that is specified by SubnetIds. If you do not specify this parameter, AWS OpsWorks CM creates one new security group that uses TCP ports 22 and 443, open to 0.0.0.0/0 (everyone).

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	SecurityGroupIds

-Select <String>

Use the -Select parameter to control the cmdlet output. The default value is 'Server'. Specifying -Select '*' will result in the cmdlet returning the whole service response (Amazon.OpsWorksCM.Model.CreateServerResponse). Specifying the name of a property of type Amazon.OpsWorksCM.Model.CreateServerResponse will result in that property being returned. Specifying -Select '^ParameterName' will result in the cmdlet returning the selected cmdlet parameter value.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-ServerName <String>

The name of the server. The server name must be unique within your AWS account, within each region. Server names must start with a letter; then letters, numbers, or hyphens (-) are allowed, up to a maximum of 40 characters.

Required?	True
Position?	1
Accept pipeline input?	True (ByValue, ByPropertyName)

-ServiceRoleArn <String>

The service role that the AWS OpsWorks CM service backend uses to work with your account. Although the AWS OpsWorks management console typically creates the service role for you, if you are using the AWS CLI or API commands, run the service-role-creation.yaml AWS CloudFormation template, located at https://s3.amazonaws.com/opsworks-cm-us-east-1-prod-default-assets/misc/opsworks-cm-roles.yaml. This template creates a CloudFormation stack that includes the service role and instance profile that you need.

Required?	True
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-SubnetId <String[]>

The IDs of subnets in which to launch the server EC2 instance. Amazon EC2-Classic customers: This field is required. All servers must run within a VPC. The VPC must have "Auto Assign Public IP" enabled. EC2-VPC customers: This field is optional. If you do not specify subnet IDs, your EC2 instances are created in a default subnet that is selected by Amazon EC2. If you specify subnet IDs, the VPC must have "Auto Assign Public IP" enabled. For more information about supported Amazon EC2 platforms, see Supported Platforms.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	SubnetIds

-Tag <Tag[]>

A map that contains tag keys and tag values to attach to an AWS OpsWorks for Chef Automate or AWS OpsWorks for Puppet Enterprise server.

The key cannot be empty.
The key can be a maximum of 127 characters, and can contain only Unicode letters, numbers, or separators, or the following special characters: + - = . _ : / @
The value can be a maximum 255 characters, and contain only Unicode letters, numbers, or separators, or the following special characters: + - = . _ : / @
Leading and trailing white spaces are trimmed from both the key and value.
A maximum of 50 user-applied tags is allowed for any AWS OpsWorks-CM server.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	Tags

Common Credential and Region Parameters

-AccessKey <String>

The AWS access key for the user account. This can be a temporary access key if the corresponding session token is supplied to the -SessionToken parameter.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	AK

-Credential <AWSCredentials>

An AWSCredentials object instance containing access and secret key information, and optionally a token for session-based credentials.

Required?	False
Position?	Named
Accept pipeline input?	True (ByValue, ByPropertyName)

-EndpointUrl <String>

The endpoint to make the call against.Note: This parameter is primarily for internal AWS use and is not required/should not be specified for normal usage. The cmdlets normally determine which endpoint to call based on the region specified to the -Region parameter or set as default in the shell (via Set-DefaultAWSRegion). Only specify this parameter if you must direct the call to a specific custom endpoint.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)

-NetworkCredential <PSCredential>

Used with SAML-based authentication when ProfileName references a SAML role profile. Contains the network credentials to be supplied during authentication with the configured identity provider's endpoint. This parameter is not required if the user's default network identity can or should be used during authentication.

Required?	False
Position?	Named
Accept pipeline input?	True (ByValue, ByPropertyName)

-ProfileLocation <String>

Used to specify the name and location of the ini-format credential file (shared with the AWS CLI and other AWS SDKs)If this optional parameter is omitted this cmdlet will search the encrypted credential file used by the AWS SDK for .NET and AWS Toolkit for Visual Studio first. If the profile is not found then the cmdlet will search in the ini-format credential file at the default location: (user's home directory)\.aws\credentials.If this parameter is specified then this cmdlet will only search the ini-format credential file at the location given.As the current folder can vary in a shell or during script execution it is advised that you use specify a fully qualified path instead of a relative path.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	AWSProfilesLocation, ProfilesLocation

-ProfileName <String>

The user-defined name of an AWS credentials or SAML-based role profile containing credential information. The profile is expected to be found in the secure credential file shared with the AWS SDK for .NET and AWS Toolkit for Visual Studio. You can also specify the name of a profile stored in the .ini-format credential file used with the AWS CLI and other AWS SDKs.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	StoredCredentials, AWSProfileName

-Region <Object>

The system name of an AWS region or an AWSRegion instance. This governs the endpoint that will be used when calling service operations. Note that the AWS resources referenced in a call are usually region-specific.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	RegionToCall

-SecretKey <String>

The AWS secret key for the user account. This can be a temporary secret key if the corresponding session token is supplied to the -SessionToken parameter.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	SK, SecretAccessKey

-SessionToken <String>

The session token if the access and secret keys are temporary session-based credentials.

Required?	False
Position?	Named
Accept pipeline input?	True (ByPropertyName)
Aliases	ST

Outputs

Amazon.OpsWorksCM.Model.CMServer or Amazon.OpsWorksCM.Model.CreateServerResponse

This cmdlet returns an Amazon.OpsWorksCM.Model.CMServer object. The service call response (type Amazon.OpsWorksCM.Model.CreateServerResponse) can also be referenced from properties attached to the cmdlet entry in the $AWSHistory stack.

New-OWCMServer Cmdlet

AWS OpsWorksCM
Available in AWS.Tools.OpsWorksCM, AWSPowerShell.NetCore and AWSPowerShell

Synopsis

Syntax

Description

Parameters

Common Credential and Region Parameters

Outputs

Supported Version

New-OWCMServer Cmdlet

AWS OpsWorksCMAvailable in AWS.Tools.OpsWorksCM, AWSPowerShell.NetCore and AWSPowerShell

Synopsis

Syntax

Description

Parameters

Common Credential and Region Parameters

Outputs

Related Links

Supported Version

AWS OpsWorksCM
Available in AWS.Tools.OpsWorksCM, AWSPowerShell.NetCore and AWSPowerShell