Stay organized with collections
Save and categorize content based on your preferences.
This page provides an overview of how to set up Binary Authorization for use with
Cloud Service Mesh.
Before you begin
Before you use Binary Authorization for Cloud Service Mesh, you must first
install Cloud Service Mesh on Google Kubernetes Engine (GKE). For more information,
see the quickstart or the GKE installation guides.
Setup Steps
To set up Binary Authorization for Cloud Service Mesh, perform the following steps:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThis guide details how to set up Binary Authorization for Cloud Service Mesh, which is only available on Google Kubernetes Engine (GKE).\u003c/p\u003e\n"],["\u003cp\u003eBefore setting up Binary Authorization, Cloud Service Mesh must be installed on GKE, referencing the quickstart or GKE installation guides for this process.\u003c/p\u003e\n"],["\u003cp\u003eThe setup involves enabling Binary Authorization, configuring its policy, and optionally using the \u003ccode\u003ebuilt-by-cloud-build\u003c/code\u003e attestor or attestations.\u003c/p\u003e\n"],["\u003cp\u003eThe policy can be configured with default rules, specific rules for the Cloud Service Mesh service identity, and exempt images.\u003c/p\u003e\n"],["\u003cp\u003eBinary Authorization for GKE with Cloud Service Mesh can be disabled by following the provided instructions, and audit logs can be viewed for GKE as well.\u003c/p\u003e\n"]]],[],null,[]]
