No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

There is no local admin. There's a default user..

Which OS would this be for? Assuming any of the Linux distros that are set up for EC2, then you should use the default user, and `sudo` if necessary.

This is for windows. This is to handle the root or admin credentials after it’s made. 

Ah. No idea then. We went the other way for the few Windows computers we create. We add an AD domain group to each machine's Administrators local group. That way, we don't ever worry about getting anything out of the machine.

And with SSM Connect to back that up, there's never any need to know about any special users. Since they're all specific to whatever AMI you're using, there probably isn't a single technique that would always work...

Ah yeah I want to join them to the domain but some of them can’t be joined. This is for an app called beyond trust. For some reason they don’t want certain servers on a domain

You may have to run a script on the target machine to do this. Maybe use userdata, and give it a script that gets the data, then pushes it to SSM Parameter Store or similar?

There is a method that lets me pull the credentials from the instance as it’s instantiated. I can just pipe that to the SSM Parma store object I make