Skip to content
Switch branches/tags

Latest commit


Git stats


Failed to load latest commit information.
Latest commit message
Commit time



Configure a new AWS account in VRA so that can use existing blueprints.


vmWare Realize Automation - Cloud Assembly (vra-cas) can be configured to deploy and manage (day-2) servers deployed in AWS. In order to effectively deploy servers using blueprints in VRA Service Broker requires configuration of approximately 20 different items. This project is automate that configuration and standarize configuration settings.

What it configures:

  1. AWS Cloud Account created
    1. Cloud zone confirmed
    2. Cloud zones tagged
      1. cz:accountname-aws-czRegion
  2. VRA Project created
    1. availibity zones tagged
      1. az:$ +"-aws-"+ $
    2. subnets tagged and added to profile
    3. default admins added to project
    4. cloud zones added to project (for provisioning)
  3. image profiles updated to include new cloud zone(s)
    1. copies image profiles of a 'master' account
    2. duplicates are deleted.
  4. flavor profiles updated to include new cloud zone(s)
    1. copies image profiles of a 'master' account
    2. duplicates are deleted
  5. security groups are tagged
    1. sg:$ + "-aws-"+$roleTag.ToLower()
    2. roleTag is pulled from existing security group name
  6. Network profile created for each zone
    1. fabric networks identified and tagged
      1. network:$"-aws-"+ $FNroleTag.tolower() + "-"+ $ZoneName
      2. FindExistingProject is the project object found after the project is created.
      3. FNRoleTag is pulled directly from the fabric network based off the naming standard
      4. zoneName is the aws region name (ie us-west-2a)
    2. network profile tagged
  7. Storage profile created for each zone
    1. basic storage policy defined
    2. storage tagged
      1. storage:$":"+$thisNewRegion.externalRegionId
  8. share blueprint repository from master


  • AWS account created and network resources configured using default naming standard.
  • power user account
  • Powershell v3 or greater
  • VRA Cloud Assembly Admin account


.\vra-new-account.ps1 -strAccountName "MyNewAWSEnvironment" -strCloudAccountAccessKey "abc123akjhsd" -strCloudAccountSecretKey "longpassword-to-be-entered-here"


name purpose
strAccountName Account name is populated throughout VRA. Needs to be unique as to not overlap other existing cloud accounts in VRA. This will become the Cloud Account name, project name, network profile names, and storage profile name. Value must not contain spaces, the script will remove them and change the value if present.
strCloudAccountAccessKey The access key is from an account that has been granted programatic access and "POWER USER" role to the new AWS account.
strCloudAccountSecretKey 'password' for the new AWS service account.


This project is held in GitHub and follows standard feature branch workflow. If you wish to contribute to the development of this project, please reach out to the authors listed in the Authors section. You can always clone the project, make changes, and complete a pull request. However, without prior notice to the authors, pull requests will be rejected.


Powershell VRA Cloud Assembly New Account






No releases published


No packages published