No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

It isn't possible. If the cli or console allows it, it's because they create the key in the background for you and just hide that bit.
Creating a key in Pulumi is trivial. One line:
```     const tlsKey = new tls.PrivateKey(name, { algorithm: "RSA" });```

An EC2 KeyPair is a simple wrapper around a public key. There must be a public key to wrap, in order to have a key pair.
It is an odd name though, since it _isn't_ a pair of keys. It's a single key, the public half of a public/private key pair.

Okay I'll give it a go thanks a lot! :smile:

:+1: You'll need to export the key's private pem value to decode the auto-generated password for the default user (.\Administrator or similar). You might not need this if you join the machine to a Windows domain, or some other authentication service.