Setting up overview

This page provides an overview of how to set up Binary Authorization in your environment. You can set up Binary Authorization using Google Cloud Console or gcloud commands. You can also perform some setup steps using the Binary Authorization REST API.

See Getting started using the CLI or Getting started using the Console for an end-to-end tutorial that includes setup steps.

Setup Steps

To set up Binary Authorization:

Enable Binary Authorization on projects that host resources used in deployment
Create a cluster with Binary Authorization enabled
Configure a policy using the CLI or Google Cloud Console that describes the constraints under which a container can be deployed
Create attestors using the CLI or Google Cloud Console who can attest that a required process has completed before a container image is deployed

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2020-06-22 UTC.