Try it now and let us know what you think. Switch to the new look >>
You can return to the original look by selecting English in the language selector above.
Create a Systems Manager Parameter (AWS CLI)
You can use the AWS CLI to create a parameter that uses the String, StringList, or
SecureString data type.
For more information about using the AWS CLI to create parameters, see Walkthrough: Create and Use a Parameter in a Command (AWS CLI).
Note
Parameters are only available in the AWS Region where they were created.
Create a String or StringList
Parameter (AWS CLI)
-
Install and configure the AWS CLI, if you have not already.
For information, see Install or Upgrade the AWS CLI.
-
Run the following command to create a parameter.
aws ssm put-parameter --name "parameter_name" --value "a parameter value, or a comma-separated list of values" --typeString or StringListIf successful, the command returns the version number of the parameter.
This example adds two key-value pair tags to a parameter. (Depending on the operating system type on your local machine, run one of the following commands. The version to run from a local Windows machine includes the escape characters ("\") that you need to run the command from your command line tool.)
Windows local machine:
aws ssm put-parameter --nameparameter-name--value "parameter-value, or a comma-separated-list-of-values" --type "String" --tags [{\"Key\":\"Region1\",\"Value\":\"East1\"},{\"Key\":\"Environment1\",\"Value\":\"Production1\"}]Linux local machine:
aws ssm put-parameter --nameparameter-name--value "parameter-value, or a comma-separated-list-of-values" --type "String" --tags '[{"Key":"Region","Value":"East"},{"Key":"Environment", "Value":"Production"}]'Here is an example that uses the
StringListdata type.aws ssm put-parameter --name /IAD/ERP/Oracle/addUsers --value "Milana,Mariana,Mark,Miguel" --type StringList --tier StandardNote
-
Items in a
StringListmust be separated by a comma (,). You can't use other punctuation or special character to escape items in the list. If you have a parameter value that requires a comma, then use theStringdata type.
-
-
Run the following command to verify the details of the parameter.
aws ssm get-parameters --name "the_parameter_name_you_specified"Here is an example that uses the name specified in the earlier example.
aws ssm get-parameters --name "/IAD/ERP/Oracle/addUsers"
Create a Secure String Parameter (AWS CLI)
Before you create a Secure String parameter, read about the requirements for this type of parameter. For more information, see About Secure String Parameters.
-
Install and configure the AWS CLI, if you have not already.
For information, see Install or Upgrade the AWS CLI.
-
Run the following command to create a parameter.
aws ssm put-parameter --name "parameter_name" --value "parameter value" --type SecureString --key-id "a KMS CMK ID, a KMS CMK ARN, an alias name, or an alias ARN"Note
To use the AWS Key Management Service (KMS) customer master key (CMK) assigned to your account, remove the
key-idparameter from the command. For more information about CMKs, see AWS Key Management Service Concepts in the AWS Key Management Service Developer Guide.The following example uses an obfuscated name (
elixir3131) for a password parameter and a CMK.aws ssm put-parameter --name /Finance/Payroll/elixir3131 --value "P@sSwW)rd" --type SecureString --key-id arn:aws:kms:us-east-2:123456789012:key/1a2b3c4d-1a2b-1a2b-1a2b-1a2b3c4d5e -
Run the following command to verify the details of the parameter.
aws ssm get-parameters --name "the_parameter_name_you_specified" --with-decryptionNote
If you don't specify the
with-decryptionparameter, or if you specify theno-with-decryptionparameter, the command returns an encrypted GUID.
