SageMaker / Client / create_domain
create_domain#
- SageMaker.Client.create_domain(**kwargs)#
Creates a
Domain
. A domain consists of an associated Amazon Elastic File System volume, a list of authorized users, and a variety of security, application, policy, and Amazon Virtual Private Cloud (VPC) configurations. Users within a domain can share notebook files and other artifacts with each other.EFS storage
When a domain is created, an EFS volume is created for use by all of the users within the domain. Each user receives a private home directory within the EFS volume for notebooks, Git repositories, and data files.
SageMaker uses the Amazon Web Services Key Management Service (Amazon Web Services KMS) to encrypt the EFS volume attached to the domain with an Amazon Web Services managed key by default. For more control, you can specify a customer managed key. For more information, see Protect Data at Rest Using Encryption.
VPC configuration
All traffic between the domain and the Amazon EFS volume is through the specified VPC and subnets. For other traffic, you can specify the
AppNetworkAccessType
parameter.AppNetworkAccessType
corresponds to the network access type that you choose when you onboard to the domain. The following options are available:PublicInternetOnly
- Non-EFS traffic goes through a VPC managed by Amazon SageMaker, which allows internet access. This is the default value.VpcOnly
- All traffic is through the specified VPC and subnets. Internet access is disabled by default. To allow internet access, you must specify a NAT gateway. When internet access is disabled, you won’t be able to run a Amazon SageMaker Studio notebook or to train or host models unless your VPC has an interface endpoint to the SageMaker API and runtime or a NAT gateway and your security groups allow outbound connections.
Warning
NFS traffic over TCP on port 2049 needs to be allowed in both inbound and outbound rules in order to launch a Amazon SageMaker Studio app successfully.
For more information, see Connect Amazon SageMaker Studio Notebooks to Resources in a VPC.
See also: AWS API Documentation
Request Syntax
response = client.create_domain( DomainName='string', AuthMode='SSO'|'IAM', DefaultUserSettings={ 'ExecutionRole': 'string', 'SecurityGroups': [ 'string', ], 'SharingSettings': { 'NotebookOutputOption': 'Allowed'|'Disabled', 'S3OutputPath': 'string', 'S3KmsKeyId': 'string' }, 'JupyterServerAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'LifecycleConfigArns': [ 'string', ], 'CodeRepositories': [ { 'RepositoryUrl': 'string' }, ] }, 'KernelGatewayAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'CustomImages': [ { 'ImageName': 'string', 'ImageVersionNumber': 123, 'AppImageConfigName': 'string' }, ], 'LifecycleConfigArns': [ 'string', ] }, 'TensorBoardAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' } }, 'RStudioServerProAppSettings': { 'AccessStatus': 'ENABLED'|'DISABLED', 'UserGroup': 'R_STUDIO_ADMIN'|'R_STUDIO_USER' }, 'RSessionAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'CustomImages': [ { 'ImageName': 'string', 'ImageVersionNumber': 123, 'AppImageConfigName': 'string' }, ] }, 'CanvasAppSettings': { 'TimeSeriesForecastingSettings': { 'Status': 'ENABLED'|'DISABLED', 'AmazonForecastRoleArn': 'string' }, 'ModelRegisterSettings': { 'Status': 'ENABLED'|'DISABLED', 'CrossAccountModelRegisterRoleArn': 'string' }, 'WorkspaceSettings': { 'S3ArtifactPath': 'string', 'S3KmsKeyId': 'string' }, 'IdentityProviderOAuthSettings': [ { 'DataSourceName': 'SalesforceGenie'|'Snowflake', 'Status': 'ENABLED'|'DISABLED', 'SecretArn': 'string' }, ], 'DirectDeploySettings': { 'Status': 'ENABLED'|'DISABLED' }, 'KendraSettings': { 'Status': 'ENABLED'|'DISABLED' }, 'GenerativeAiSettings': { 'AmazonBedrockRoleArn': 'string' } }, 'CodeEditorAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'LifecycleConfigArns': [ 'string', ] }, 'JupyterLabAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'CustomImages': [ { 'ImageName': 'string', 'ImageVersionNumber': 123, 'AppImageConfigName': 'string' }, ], 'LifecycleConfigArns': [ 'string', ], 'CodeRepositories': [ { 'RepositoryUrl': 'string' }, ] }, 'SpaceStorageSettings': { 'DefaultEbsStorageSettings': { 'DefaultEbsVolumeSizeInGb': 123, 'MaximumEbsVolumeSizeInGb': 123 } }, 'DefaultLandingUri': 'string', 'StudioWebPortal': 'ENABLED'|'DISABLED', 'CustomPosixUserConfig': { 'Uid': 123, 'Gid': 123 }, 'CustomFileSystemConfigs': [ { 'EFSFileSystemConfig': { 'FileSystemId': 'string', 'FileSystemPath': 'string' } }, ] }, DomainSettings={ 'SecurityGroupIds': [ 'string', ], 'RStudioServerProDomainSettings': { 'DomainExecutionRoleArn': 'string', 'RStudioConnectUrl': 'string', 'RStudioPackageManagerUrl': 'string', 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' } }, 'ExecutionRoleIdentityConfig': 'USER_PROFILE_NAME'|'DISABLED', 'DockerSettings': { 'EnableDockerAccess': 'ENABLED'|'DISABLED', 'VpcOnlyTrustedAccounts': [ 'string', ] } }, SubnetIds=[ 'string', ], VpcId='string', Tags=[ { 'Key': 'string', 'Value': 'string' }, ], AppNetworkAccessType='PublicInternetOnly'|'VpcOnly', HomeEfsFileSystemKmsKeyId='string', KmsKeyId='string', AppSecurityGroupManagement='Service'|'Customer', DefaultSpaceSettings={ 'ExecutionRole': 'string', 'SecurityGroups': [ 'string', ], 'JupyterServerAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'LifecycleConfigArns': [ 'string', ], 'CodeRepositories': [ { 'RepositoryUrl': 'string' }, ] }, 'KernelGatewayAppSettings': { 'DefaultResourceSpec': { 'SageMakerImageArn': 'string', 'SageMakerImageVersionArn': 'string', 'SageMakerImageVersionAlias': 'string', 'InstanceType': 'system'|'ml.t3.micro'|'ml.t3.small'|'ml.t3.medium'|'ml.t3.large'|'ml.t3.xlarge'|'ml.t3.2xlarge'|'ml.m5.large'|'ml.m5.xlarge'|'ml.m5.2xlarge'|'ml.m5.4xlarge'|'ml.m5.8xlarge'|'ml.m5.12xlarge'|'ml.m5.16xlarge'|'ml.m5.24xlarge'|'ml.m5d.large'|'ml.m5d.xlarge'|'ml.m5d.2xlarge'|'ml.m5d.4xlarge'|'ml.m5d.8xlarge'|'ml.m5d.12xlarge'|'ml.m5d.16xlarge'|'ml.m5d.24xlarge'|'ml.c5.large'|'ml.c5.xlarge'|'ml.c5.2xlarge'|'ml.c5.4xlarge'|'ml.c5.9xlarge'|'ml.c5.12xlarge'|'ml.c5.18xlarge'|'ml.c5.24xlarge'|'ml.p3.2xlarge'|'ml.p3.8xlarge'|'ml.p3.16xlarge'|'ml.p3dn.24xlarge'|'ml.g4dn.xlarge'|'ml.g4dn.2xlarge'|'ml.g4dn.4xlarge'|'ml.g4dn.8xlarge'|'ml.g4dn.12xlarge'|'ml.g4dn.16xlarge'|'ml.r5.large'|'ml.r5.xlarge'|'ml.r5.2xlarge'|'ml.r5.4xlarge'|'ml.r5.8xlarge'|'ml.r5.12xlarge'|'ml.r5.16xlarge'|'ml.r5.24xlarge'|'ml.g5.xlarge'|'ml.g5.2xlarge'|'ml.g5.4xlarge'|'ml.g5.8xlarge'|'ml.g5.16xlarge'|'ml.g5.12xlarge'|'ml.g5.24xlarge'|'ml.g5.48xlarge'|'ml.geospatial.interactive'|'ml.p4d.24xlarge'|'ml.p4de.24xlarge'|'ml.trn1.2xlarge'|'ml.trn1.32xlarge'|'ml.trn1n.32xlarge', 'LifecycleConfigArn': 'string' }, 'CustomImages': [ { 'ImageName': 'string', 'ImageVersionNumber': 123, 'AppImageConfigName': 'string' }, ], 'LifecycleConfigArns': [ 'string', ] } } )
- Parameters:
DomainName (string) –
[REQUIRED]
A name for the domain.
AuthMode (string) –
[REQUIRED]
The mode of authentication that members use to access the domain.
DefaultUserSettings (dict) –
[REQUIRED]
The default settings to use to create a user profile when
UserSettings
isn’t specified in the call to theCreateUserProfile
API.SecurityGroups
is aggregated when specified in both calls. For all other settings inUserSettings
, the values specified inCreateUserProfile
take precedence over those specified inCreateDomain
.ExecutionRole (string) –
The execution role for the user.
SecurityGroups (list) –
The security groups for the Amazon Virtual Private Cloud (VPC) that the domain uses for communication.
Optional when the
CreateDomain.AppNetworkAccessType
parameter is set toPublicInternetOnly
.Required when the
CreateDomain.AppNetworkAccessType
parameter is set toVpcOnly
, unless specified as part of theDefaultUserSettings
for the domain.Amazon SageMaker adds a security group to allow NFS traffic from Amazon SageMaker Studio. Therefore, the number of security groups that you can specify is one less than the maximum number shown.
(string) –
SharingSettings (dict) –
Specifies options for sharing Amazon SageMaker Studio notebooks.
NotebookOutputOption (string) –
Whether to include the notebook cell output when sharing the notebook. The default is
Disabled
.S3OutputPath (string) –
When
NotebookOutputOption
isAllowed
, the Amazon S3 bucket used to store the shared notebook snapshots.S3KmsKeyId (string) –
When
NotebookOutputOption
isAllowed
, the Amazon Web Services Key Management Service (KMS) encryption key ID used to encrypt the notebook cell output in the Amazon S3 bucket.
JupyterServerAppSettings (dict) –
The Jupyter server’s app settings.
DefaultResourceSpec (dict) –
The default instance type and the Amazon Resource Name (ARN) of the default SageMaker image used by the JupyterServer app. If you use the
LifecycleConfigArns
parameter, then this parameter is also required.SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
LifecycleConfigArns (list) –
The Amazon Resource Name (ARN) of the Lifecycle Configurations attached to the JupyterServerApp. If you use this parameter, the
DefaultResourceSpec
parameter is also required.Note
To remove a Lifecycle Config, you must set
LifecycleConfigArns
to an empty list.(string) –
CodeRepositories (list) –
A list of Git repositories that SageMaker automatically displays to users for cloning in the JupyterServer application.
(dict) –
A Git repository that SageMaker automatically displays to users for cloning in the JupyterServer application.
RepositoryUrl (string) – [REQUIRED]
The URL of the Git repository.
KernelGatewayAppSettings (dict) –
The kernel gateway app settings.
DefaultResourceSpec (dict) –
The default instance type and the Amazon Resource Name (ARN) of the default SageMaker image used by the KernelGateway app.
Note
The Amazon SageMaker Studio UI does not use the default instance type value set here. The default instance type set here is used when Apps are created using the CLI or CloudFormation and the instance type parameter value is not passed.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
CustomImages (list) –
A list of custom SageMaker images that are configured to run as a KernelGateway app.
(dict) –
A custom SageMaker image. For more information, see Bring your own SageMaker image.
ImageName (string) – [REQUIRED]
The name of the CustomImage. Must be unique to your account.
ImageVersionNumber (integer) –
The version number of the CustomImage.
AppImageConfigName (string) – [REQUIRED]
The name of the AppImageConfig.
LifecycleConfigArns (list) –
The Amazon Resource Name (ARN) of the Lifecycle Configurations attached to the the user profile or domain.
Note
To remove a Lifecycle Config, you must set
LifecycleConfigArns
to an empty list.(string) –
TensorBoardAppSettings (dict) –
The TensorBoard app settings.
DefaultResourceSpec (dict) –
The default instance type and the Amazon Resource Name (ARN) of the SageMaker image created on the instance.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
RStudioServerProAppSettings (dict) –
A collection of settings that configure user interaction with the
RStudioServerPro
app.AccessStatus (string) –
Indicates whether the current user has access to the
RStudioServerPro
app.UserGroup (string) –
The level of permissions that the user has within the
RStudioServerPro
app. This value defaults to User. The Admin value allows the user access to the RStudio Administrative Dashboard.
RSessionAppSettings (dict) –
A collection of settings that configure the
RSessionGateway
app.DefaultResourceSpec (dict) –
Specifies the ARN’s of a SageMaker image and SageMaker image version, and the instance type that the version runs on.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
CustomImages (list) –
A list of custom SageMaker images that are configured to run as a RSession app.
(dict) –
A custom SageMaker image. For more information, see Bring your own SageMaker image.
ImageName (string) – [REQUIRED]
The name of the CustomImage. Must be unique to your account.
ImageVersionNumber (integer) –
The version number of the CustomImage.
AppImageConfigName (string) – [REQUIRED]
The name of the AppImageConfig.
CanvasAppSettings (dict) –
The Canvas app settings.
TimeSeriesForecastingSettings (dict) –
Time series forecast settings for the SageMaker Canvas application.
Status (string) –
Describes whether time series forecasting is enabled or disabled in the Canvas application.
AmazonForecastRoleArn (string) –
The IAM role that Canvas passes to Amazon Forecast for time series forecasting. By default, Canvas uses the execution role specified in the
UserProfile
that launches the Canvas application. If an execution role is not specified in theUserProfile
, Canvas uses the execution role specified in the Domain that owns theUserProfile
. To allow time series forecasting, this IAM role should have the AmazonSageMakerCanvasForecastAccess policy attached andforecast.amazonaws.com
added in the trust relationship as a service principal.
ModelRegisterSettings (dict) –
The model registry settings for the SageMaker Canvas application.
Status (string) –
Describes whether the integration to the model registry is enabled or disabled in the Canvas application.
CrossAccountModelRegisterRoleArn (string) –
The Amazon Resource Name (ARN) of the SageMaker model registry account. Required only to register model versions created by a different SageMaker Canvas Amazon Web Services account than the Amazon Web Services account in which SageMaker model registry is set up.
WorkspaceSettings (dict) –
The workspace settings for the SageMaker Canvas application.
S3ArtifactPath (string) –
The Amazon S3 bucket used to store artifacts generated by Canvas. Updating the Amazon S3 location impacts existing configuration settings, and Canvas users no longer have access to their artifacts. Canvas users must log out and log back in to apply the new location.
S3KmsKeyId (string) –
The Amazon Web Services Key Management Service (KMS) encryption key ID that is used to encrypt artifacts generated by Canvas in the Amazon S3 bucket.
IdentityProviderOAuthSettings (list) –
The settings for connecting to an external data source with OAuth.
(dict) –
The Amazon SageMaker Canvas application setting where you configure OAuth for connecting to an external data source, such as Snowflake.
DataSourceName (string) –
The name of the data source that you’re connecting to. Canvas currently supports OAuth for Snowflake and Salesforce Data Cloud.
Status (string) –
Describes whether OAuth for a data source is enabled or disabled in the Canvas application.
SecretArn (string) –
The ARN of an Amazon Web Services Secrets Manager secret that stores the credentials from your identity provider, such as the client ID and secret, authorization URL, and token URL.
DirectDeploySettings (dict) –
The model deployment settings for the SageMaker Canvas application.
Status (string) –
Describes whether model deployment permissions are enabled or disabled in the Canvas application.
KendraSettings (dict) –
The settings for document querying.
Status (string) –
Describes whether the document querying feature is enabled or disabled in the Canvas application.
GenerativeAiSettings (dict) –
The generative AI settings for the SageMaker Canvas application.
AmazonBedrockRoleArn (string) –
The ARN of an Amazon Web Services IAM role that allows fine-tuning of large language models (LLMs) in Amazon Bedrock. The IAM role should have Amazon S3 read and write permissions, as well as a trust relationship that establishes
bedrock.amazonaws.com
as a service principal.
CodeEditorAppSettings (dict) –
The Code Editor application settings.
DefaultResourceSpec (dict) –
Specifies the ARN’s of a SageMaker image and SageMaker image version, and the instance type that the version runs on.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
LifecycleConfigArns (list) –
The Amazon Resource Name (ARN) of the Code Editor application lifecycle configuration.
(string) –
JupyterLabAppSettings (dict) –
The settings for the JupyterLab application.
DefaultResourceSpec (dict) –
Specifies the ARN’s of a SageMaker image and SageMaker image version, and the instance type that the version runs on.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
CustomImages (list) –
A list of custom SageMaker images that are configured to run as a JupyterLab app.
(dict) –
A custom SageMaker image. For more information, see Bring your own SageMaker image.
ImageName (string) – [REQUIRED]
The name of the CustomImage. Must be unique to your account.
ImageVersionNumber (integer) –
The version number of the CustomImage.
AppImageConfigName (string) – [REQUIRED]
The name of the AppImageConfig.
LifecycleConfigArns (list) –
The Amazon Resource Name (ARN) of the lifecycle configurations attached to the user profile or domain. To remove a lifecycle config, you must set
LifecycleConfigArns
to an empty list.(string) –
CodeRepositories (list) –
A list of Git repositories that SageMaker automatically displays to users for cloning in the JupyterLab application.
(dict) –
A Git repository that SageMaker automatically displays to users for cloning in the JupyterServer application.
RepositoryUrl (string) – [REQUIRED]
The URL of the Git repository.
SpaceStorageSettings (dict) –
The storage settings for a private space.
DefaultEbsStorageSettings (dict) –
The default EBS storage settings for a private space.
DefaultEbsVolumeSizeInGb (integer) – [REQUIRED]
The default size of the EBS storage volume for a private space.
MaximumEbsVolumeSizeInGb (integer) – [REQUIRED]
The maximum size of the EBS storage volume for a private space.
DefaultLandingUri (string) –
The default experience that the user is directed to when accessing the domain. The supported values are:
studio::
: Indicates that Studio is the default experience. This value can only be passed ifStudioWebPortal
is set toENABLED
.app:JupyterServer:
: Indicates that Studio Classic is the default experience.
StudioWebPortal (string) –
Whether the user can access Studio. If this value is set to
DISABLED
, the user cannot access Studio, even if that is the default experience for the domain.CustomPosixUserConfig (dict) –
Details about the POSIX identity that is used for file system operations.
Uid (integer) – [REQUIRED]
The POSIX user ID.
Gid (integer) – [REQUIRED]
The POSIX group ID.
CustomFileSystemConfigs (list) –
The settings for assigning a custom file system to a user profile. Permitted users can access this file system in Amazon SageMaker Studio.
(dict) –
The settings for assigning a custom file system to a user profile or space for an Amazon SageMaker Domain. Permitted users can access this file system in Amazon SageMaker Studio.
Note
This is a Tagged Union structure. Only one of the following top level keys can be set:
EFSFileSystemConfig
.EFSFileSystemConfig (dict) –
The settings for a custom Amazon EFS file system.
FileSystemId (string) – [REQUIRED]
The ID of your Amazon EFS file system.
FileSystemPath (string) –
The path to the file system directory that is accessible in Amazon SageMaker Studio. Permitted users can access only this directory and below.
DomainSettings (dict) –
A collection of
Domain
settings.SecurityGroupIds (list) –
The security groups for the Amazon Virtual Private Cloud that the
Domain
uses for communication between Domain-level apps and user apps.(string) –
RStudioServerProDomainSettings (dict) –
A collection of settings that configure the
RStudioServerPro
Domain-level app.DomainExecutionRoleArn (string) – [REQUIRED]
The ARN of the execution role for the
RStudioServerPro
Domain-level app.RStudioConnectUrl (string) –
A URL pointing to an RStudio Connect server.
RStudioPackageManagerUrl (string) –
A URL pointing to an RStudio Package Manager server.
DefaultResourceSpec (dict) –
Specifies the ARN’s of a SageMaker image and SageMaker image version, and the instance type that the version runs on.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
ExecutionRoleIdentityConfig (string) –
The configuration for attaching a SageMaker user profile name to the execution role as a sts:SourceIdentity key.
DockerSettings (dict) –
A collection of settings that configure the domain’s Docker interaction.
EnableDockerAccess (string) –
Indicates whether the domain can access Docker.
VpcOnlyTrustedAccounts (list) –
The list of Amazon Web Services accounts that are trusted when the domain is created in VPC-only mode.
(string) –
SubnetIds (list) –
[REQUIRED]
The VPC subnets that the domain uses for communication.
(string) –
VpcId (string) –
[REQUIRED]
The ID of the Amazon Virtual Private Cloud (VPC) that the domain uses for communication.
Tags (list) –
Tags to associated with the Domain. Each tag consists of a key and an optional value. Tag keys must be unique per resource. Tags are searchable using the
Search
API.Tags that you specify for the Domain are also added to all Apps that the Domain launches.
(dict) –
A tag object that consists of a key and an optional value, used to manage metadata for SageMaker Amazon Web Services resources.
You can add tags to notebook instances, training jobs, hyperparameter tuning jobs, batch transform jobs, models, labeling jobs, work teams, endpoint configurations, and endpoints. For more information on adding tags to SageMaker resources, see AddTags.
For more information on adding metadata to your Amazon Web Services resources with tagging, see Tagging Amazon Web Services resources. For advice on best practices for managing Amazon Web Services resources with tagging, see Tagging Best Practices: Implement an Effective Amazon Web Services Resource Tagging Strategy.
Key (string) – [REQUIRED]
The tag key. Tag keys must be unique per resource.
Value (string) – [REQUIRED]
The tag value.
AppNetworkAccessType (string) –
Specifies the VPC used for non-EFS traffic. The default value is
PublicInternetOnly
.PublicInternetOnly
- Non-EFS traffic is through a VPC managed by Amazon SageMaker, which allows direct internet accessVpcOnly
- All traffic is through the specified VPC and subnets
HomeEfsFileSystemKmsKeyId (string) – Use
KmsKeyId
.KmsKeyId (string) – SageMaker uses Amazon Web Services KMS to encrypt the EFS volume attached to the domain with an Amazon Web Services managed key by default. For more control, specify a customer managed key.
AppSecurityGroupManagement (string) – The entity that creates and manages the required security groups for inter-app communication in
VPCOnly
mode. Required whenCreateDomain.AppNetworkAccessType
isVPCOnly
andDomainSettings.RStudioServerProDomainSettings.DomainExecutionRoleArn
is provided. If setting up the domain for use with RStudio, this value must be set toService
.DefaultSpaceSettings (dict) –
The default settings used to create a space.
ExecutionRole (string) –
The ARN of the execution role for the space.
SecurityGroups (list) –
The security group IDs for the Amazon VPC that the space uses for communication.
(string) –
JupyterServerAppSettings (dict) –
The JupyterServer app settings.
DefaultResourceSpec (dict) –
The default instance type and the Amazon Resource Name (ARN) of the default SageMaker image used by the JupyterServer app. If you use the
LifecycleConfigArns
parameter, then this parameter is also required.SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
LifecycleConfigArns (list) –
The Amazon Resource Name (ARN) of the Lifecycle Configurations attached to the JupyterServerApp. If you use this parameter, the
DefaultResourceSpec
parameter is also required.Note
To remove a Lifecycle Config, you must set
LifecycleConfigArns
to an empty list.(string) –
CodeRepositories (list) –
A list of Git repositories that SageMaker automatically displays to users for cloning in the JupyterServer application.
(dict) –
A Git repository that SageMaker automatically displays to users for cloning in the JupyterServer application.
RepositoryUrl (string) – [REQUIRED]
The URL of the Git repository.
KernelGatewayAppSettings (dict) –
The KernelGateway app settings.
DefaultResourceSpec (dict) –
The default instance type and the Amazon Resource Name (ARN) of the default SageMaker image used by the KernelGateway app.
Note
The Amazon SageMaker Studio UI does not use the default instance type value set here. The default instance type set here is used when Apps are created using the CLI or CloudFormation and the instance type parameter value is not passed.
SageMakerImageArn (string) –
The ARN of the SageMaker image that the image version belongs to.
SageMakerImageVersionArn (string) –
The ARN of the image version created on the instance.
SageMakerImageVersionAlias (string) –
The SageMakerImageVersionAlias of the image to launch with. This value is in SemVer 2.0.0 versioning format.
InstanceType (string) –
The instance type that the image version runs on.
Note
JupyterServer apps only support the
system
value.For KernelGateway apps, the
system
value is translated toml.t3.medium
. KernelGateway apps also support all other values for available instance types.LifecycleConfigArn (string) –
The Amazon Resource Name (ARN) of the Lifecycle Configuration attached to the Resource.
CustomImages (list) –
A list of custom SageMaker images that are configured to run as a KernelGateway app.
(dict) –
A custom SageMaker image. For more information, see Bring your own SageMaker image.
ImageName (string) – [REQUIRED]
The name of the CustomImage. Must be unique to your account.
ImageVersionNumber (integer) –
The version number of the CustomImage.
AppImageConfigName (string) – [REQUIRED]
The name of the AppImageConfig.
LifecycleConfigArns (list) –
The Amazon Resource Name (ARN) of the Lifecycle Configurations attached to the the user profile or domain.
Note
To remove a Lifecycle Config, you must set
LifecycleConfigArns
to an empty list.(string) –
- Return type:
dict
- Returns:
Response Syntax
{ 'DomainArn': 'string', 'Url': 'string' }
Response Structure
(dict) –
DomainArn (string) –
The Amazon Resource Name (ARN) of the created domain.
Url (string) –
The URL to the created domain.
Exceptions
SageMaker.Client.exceptions.ResourceLimitExceeded
SageMaker.Client.exceptions.ResourceInUse