Skip to main content

AWS Marketplace

Chef Automate is an enterprise platform that allows developers, operations, and security engineers to collaborate on application and infrastructure changes with speed and at scale. Chef Automate provides actionable insights across data centers and cloud providers, wherever your nodes live.

Chef Automate is the center of the modern Chef platform, providing users with a single source of truth for infrastructure, security, and application automation. The comprehensive dashboard offers real-time views of your configuration management activity. Chef Automate comes bundled with the latest Chef Infra Server, providing the core tools you need to manage your enterprise infrastructure. Data collection is enabled by default, allowing your nodes to report activity in real time. This instance is free for 60 days, or you can bring your own license (BYOL).

Use this instance with Chef Workstation installed on your laptop or a separate AWS instance.

Chef Workstation includes:

  • Chef Infra Client
  • Chef InSpec
  • Chef Habitat
  • chef and knife command line tools
  • Testing tools, such as Test Kitchen and Cookstyle
  • Everything else needed to author cookbooks and upload them to the Chef Infra Server.
If you need to run Chef Automate with a high availability (HA) topology, please contact Chef Support.


Select Chef Automate in the AWS Marketplace.

The Chef Automate AWS deployment uses CloudFormation. Download the CloudFormation template or use the view the template in CloudFormation Designer

Every CloudFormation Stack deployment creates a new Virtual Private Cloud (VPC).


AWS provides five VPCs for each region. If you require more VPCs, please contact AWS Support.

Start Chef Automate with CloudFormation

  1. Enter the following values for your deployment:

    Stack Name
    Default: 40
    Instance Type
    Default: t2.xlarge
    Enter your existing keypair.
  2. Select Next after entering these values.

  3. Configure the CloudFormation stack options:

    1. Create a tag for your stack with Key set to Name and Value to Chef-automate-stack.

    2. Set permissions for your stack:

      1. Create an IAM role with AmazonEC2FullAccess to enable resource creation using the CloudFormation template.
      2. Once that role is created, select the IAM role from the dropdown menu.
    3. Configure stack failure options:

      AWS provides two stack-failure options:

      Roll back all stack resources
      In case of failure, it should rollback all created resources (Default: Roll back all stack resources).
      Preserve successfully provisioned resources
      In case of failure, it will rollback only failed resources.
    4. Configure advanced options:

      1. Set the stack policy.

        The stack policy defines the update actions that can be performed on resources.Default: No stack policy.

      2. Set the rollback configuration.

        AWS CloudFormation will monitor the state of your application during stack creation and updating. For more information, see Amazon’s documentation on rollback triggers.

    5. Configure notification options:

      Create or attach an AWS Simple Notification Service (SNS) which will send email notifications about the stack creation process.

    6. Set the stack creation options:

      If specified and stack creation is not completed in that time, CloudFormation will roll back the stack.
      Termination Protection
      Termination protection prevents a user from deleting a stack.
  4. Select Next to create your Chef Automate deployment. This process can take several minutes.

For additional information about these options, see Amazon’s documentation on CloudFormation stack options.


  1. Navigate to the AWS deployment Outputs tab and locate the Chef Automate URL, user name, and password. You will need these in the next steps. AWS Chef Automate deployment Outputs tab contains your instance URL, user name, and password

  2. Open your browser and paste the Chef Automate URL, which will open an alert page.

  3. Select Advanced and continue. Select ‘advanced’ to bypass the warning that the page is not secure.

  4. Enter your Username and Password and select Sign In.

  5. Fill out the registration form and Accept the Chef License.

  6. Select Register to enter Chef Automate.

  7. Congratulations! You’ve started Chef Automate!

Add Chef Servers

  1. Add Chef-Server Details, select the Add Chef Infra Server Button.

  2. Enter the server name, FQDN, and IP address. Then select Add Chef Infra Server to create the server.

    Add the name of the Chef Infra Server.
    Enter the same as the Chef Automate FQDN.
    IP Address
    Public IP address of the EC2 instance.
    Add Chef Infra Server Form
  3. The Chef Infra Server will appear in the list of servers. Selecting the server allows you to view information about it. Select a server from the list

  4. Select Add Chef Organization.

  5. Enter the following information:

    Admin User
    Admin Key
    copy the key from starter kit
  6. Select Add Chef Organization.

    Select the Add Chef Organization button to complete this actio

AWS Deployment Security

Update the AWS Deployment Security Group to require source IP addresses for a secure SSH connection.

  1. Select the Instance Security group in the Resources tab of your AWS Chef Automate deployment.

  2. Select the Security Group ID for your Chef Automate deployment. Locate and copy your security group ID from the second column

  3. Select Edit inbound rules. Select the Edit inbound rules button

  4. Select Add rule and then SSH and enter the source IP.

  5. Select Save rules to finish. Add your IP address range as a custom SSH rule

Edit this page on GitHub

Thank you for your feedback!


Search Results