Set up overview for Anthos Service Mesh

This page provides an overview of how to set up Binary Authorization for use with Anthos Service Mesh.

Before you begin

Before you use Binary Authorization for Anthos Service Mesh, you must first install Anthos Service Mesh on Google Kubernetes Engine (GKE). For more information, see the quickstart or the GKE installation guides.

Setup Steps

To set up Binary Authorization for Anthos Service Mesh, perform the following steps:

Enable Binary Authorization.
Configure your Binary Authorization policy.

Note: Skip this step if you want to use attestations.

You can configure the following features in your policy:
Optional: Use the built-by-cloud-build attestor to deploy only images built by Cloud Build (Preview).
Optional: Use attestations.

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2023-05-26 UTC.