Creating a cluster

This page explains how to create a cluster in Google Kubernetes Engine (GKE) with Binary Authorization enabled. You perform this step at the command line using gcloud commands or in Google Cloud Platform Console. This step is part of setting up Binary Authorization.

Create the cluster

To create a cluster with Binary Authorization enabled:

gcloud

  1. If you have not already set your default Google Cloud Platform project:

    gcloud config set project PROJECT_ID
    

    where PROJECT_ID is the ID of the project where you want to create the cluster.

  2. Create the cluster:

    gcloud beta container clusters create \
        --enable-binauthz \
        --zone ZONE \
        CLUSTER_NAME
    

    where:

    • ZONE is the GKE zone (for example, us-central1-a)
    • CLUSTER_NAME is the name of the cluster you want to create (for example, test-cluster)

console

Create the cluster:

  1. Open the GKE page in GCP Console.

    Go to GKE

  2. Click Create Cluster. Enter values for the default fields as described in Creating a Cluster.

  3. Click Advanced Options.

  4. In the Security section, select Enable Binary Authorization.

    Enable Binary Authorization option

  5. Click Create.

It can take a few minutes for your cluster to be created.

Verify that the cluster is running

To verify that the cluster is running:

gcloud

List running clusters in your project:

gcloud beta container clusters list \
    --zone ZONE

console

  1. Open the GKE page in GCP Console.

    Go to GKE

  2. View running clusters in your project:

    View running GKE clusters

What's next

Was this page helpful? Let us know how we did:

Send feedback about...

Binary Authorization Documentation