Skip to main content
Google Cloud
Documentation Technology areas
  • AI and ML
  • Application development
  • Application hosting
  • Compute
  • Data analytics and pipelines
  • Databases
  • Distributed, hybrid, and multicloud
  • Generative AI
  • Industry solutions
  • Networking
  • Observability and monitoring
  • Security
  • Storage
Cross-product tools
  • Access and resources management
  • Costs and usage management
  • Google Cloud SDK, languages, frameworks, and tools
  • Infrastructure as code
  • Migration
Related sites
  • Google Cloud Home
  • Free Trial and Free Tier
  • Architecture Center
  • Blog
  • Contact Sales
  • Google Cloud Developer Center
  • Google Developer Center
  • Google Cloud Marketplace
  • Google Cloud Marketplace Documentation
  • Google Cloud Skills Boost
  • Google Cloud Solution Center
  • Google Cloud Support
  • Google Cloud Tech Youtube Channel
/
  • English
  • Deutsch
  • Español – América Latina
  • Français
  • Português – Brasil
  • 中文 – 简体
  • 日本語
  • 한국어
Console Sign in
  • Google Distributed Cloud
Overview Guides
Contact Us Start free
Google Cloud
  • Documentation
    • Overview
    • Guides
  • Technology areas
    • More
  • Cross-product tools
    • More
  • Related sites
    • More
  • Console
  • Contact Us
  • Start free
  • Discover
  • Product overview
  • Advanced clusters
    • Overview
    • Update or upgrade a cluster to an advanced cluster
    • Upgrade a non-advanced cluster and keep it as non-advanced
  • Get started
  • Set up minimal infrastructure
  • Create basic clusters
  • Install
  • Overview
  • Choose a tool to manage cluster lifecycle
  • Set up on-prem infrastructure
    • vSphere
      • vSphere requirements
      • CPU, RAM, and storage requirements
      • CPU, RAM, and storage requirements (kubeception)
      • vSphere feature incompatibility
      • Optional: Manually import OVAs to vSphere
    • Load balancing
      • Overview
      • Bundled load balancing with MetalLB
      • Manual load balancing
      • Manual load balancing with Citrix
      • Disable bundled ingres
      • Manual load balancing with manual F5 BIG-IP
    • Plan your IP addresses
    • Plan your IP addresses (kubeception)
    • Proxy and firewall rules
    • Scalability limits
    • Connect to Google
  • Set up Google Cloud resources
    • Install the gcloud CLI
    • Create Cloud projects
    • Create service accounts
  • Configure a private container registry
  • Use Artifact Registry as a private registry for workload images
  • Set up topology domains
  • Create clusters
    • Download gkeadm
    • Create an admin workstation
    • Admin cluster
      • Create an admin cluster
      • Create an admin cluster for use in topology domains
    • User cluster
      • Create a user cluster
      • Create a user cluster for use in topology domains
  • Deploy workloads
  • Deploy an application
  • Create a Service and an Ingress
  • CPU and RAM for workloads
  • Update and upgrade
  • Update cluster configuration
  • Upgrade a cluster
    • Upgrade overview
    • Upgrade best practices
    • Run the pre-upgrade tool
    • Upgrade a cluster
    • Upgrade node pools
    • Skip a version when upgrading node pools
  • Migrate clusters to recommended features
  • Version 1.30 and higher
    • Plan cluster migration to recommended features
    • Migrate a user cluster to recommended features
    • Migrate an admin cluster to recommended features
    • Manual load balancing with F5 BIG-IP and legacy Google-provided controllers
  • Versions 1.29 and lower
    • Migrate Seesaw to MetalLB
    • Migrate configuration settings for your F5 BIG-IP load balancer
    • Migrate to an HA admin cluster
    • Migrate to Controlplane V2
    • Manual load balancing with F5 BIG-IP and legacy Google-provided controllers
  • Manage clusters
  • Connect to a cluster
    • Manage a cluster in the Google Cloud console
    • Configure a user cluster to be managed by the GKE On-Prem API
  • Adjust cluster size
    • Resize a user cluster
    • Enable auto scaling
  • Back up a cluster
    • Back up and restore a user cluster
    • Back up and restore an admin cluster
    • Back up and restore an admin cluster with gkectl
    • Back up and restore advanced clusters with gkectl
    • Replace a failed etcd replica
  • Delete a cluster
    • Delete a user cluster
    • Delete an admin cluster
  • Manage cluster nodes
    • Node images
    • Manage node IP addresses
    • Create and manage node pools
    • Configure VM-Host affinity
    • Create and manage Windows Server OS node pools
    • Set the container runtime
    • Use SSH to connect to a cluster node
    • Configure node auto repair
    • Configure node auto resizing
    • Resize the control-plane node for a user cluster
    • Control scheduling with taints and tolerations
    • Configure node pool update policy
    • Track VMs using vSphere tags
    • Configure PDB violation timeout
  • Manage a cluster network
    • Remove static IP addresses
    • Configure cluster DNS
    • Configure an egress NAT gateway
    • Multiple network interfaces for Pods
  • Manage storage
    • Overview
    • Use the vSphere CSI driver
    • Install a CSI driver
    • Set the default storage class
    • Use the StatefulSet CSI Migration Tool
    • Configure a storage policy
    • Storage migration with SPBM
    • Migrate a datastore to SPBM
    • Restore a volume from a snapshot
  • Manage a private registry
    • Use Config Sync with a private registry
  • Log and Monitor
  • Overview
  • Configure logging and monitoring
  • Create custom dashboards for monitoring
  • Enable application logging and monitoring
  • Enable user-defined custom metrics for Horizontal Pod autoscaling
  • Log network policy events
  • Create alerting policies
  • Audit logging
    • Cloud API audit logging information
    • Configure Kubernetes audit logs
    • Kubernetes Metadata API audit logging information
  • View Anthos metrics
  • Use predefined dashboards
  • Secure and control access
  • Overview
  • RBAC permissions for system components
  • Harden your cluster
  • Manage user identity
  • Set up Binary Authorization policy enforcement
  • Configure prepared credentials for an admin cluster
  • Configure prepared credentials for user clusters
  • Enable Kubelet read-only port
  • Enable encryption of Secrets
    • Enable always-on secrets encryption
  • Rotate keys and credentials
    • Update cluster credentials
    • Rotate service account keys
    • Rotate user cluster CA certificates
    • Rotate admin cluster CA certificates
    • Rotate KSA signing keys
  • Troubleshoot
  • Cluster diagnosis
  • Cluster health checks
  • If vCenter Server is down
  • Recover and repair
    • High availability and disaster recovery concepts
    • Repair the admin cluster's control-plane VM
    • Create diagnostic snapshots when advanced cluster isn't enabled
    • Create diagnostic snapshots when advanced cluster is enabled
    • Failure modes and recovery
  • Troubleshooting guides
    • Authentication
    • Cluster creation or upgrade
    • Clusters enrolled in the GKE On-prem API
    • Cluster updates
    • Controller manager
    • etcd
    • Kubernetes API server
    • Networking
    • NFS + DataPlane v2
    • Nodes
    • Observability
    • Resizing
    • Resource contention
    • Scheduler
    • Storage
    • Webhooks
  • About errors
  • Known issues
  • Support
  • Reference
  • Configuration files
    • Overview
    • Generate configuration files from a cluster
    • Admin workstation configuration file
    • Admin cluster configuration file
      • 1.30 and higher admin cluster
      • 1.29 admin cluster
      • 1.28 admin cluster
    • User cluster configuration file
      • 1.30 and higher user cluster
      • 1.29 user cluster
      • 1.28 user cluster
    • Earlier versions of cluster configuration files
    • Specify vSphere folders in configuration files
    • IP block file
    • Credentials file
    • Secrets configuration file
    • vSphere infrastructure configuration file
  • vCenter Server
    • Determine your vCenter server address
    • Get your vCenter CA certificate
    • Update vCenter certificate
    • Prepare for a vCenter upgrade
  • GKE On-Prem API
  • Versions and releases
    • Versioning
    • Release notes
    • Security bulletins
    • Vulnerability fixes
    • Downloads
    • Deprecations
  • Tools
    • gkeadm
    • gkectl
    • Preflight checks
  • CIS benchmark compliance
    • CIS Kubernetes Benchmark
    • CIS Ubuntu Benchmark
    • CIS Container-Optimized OS Benchmark
  • Legal: Export compliance
  • Supported regions for the GKE On-Prem API
  • Detect removed Kubernetes APIs
  • AI and ML
  • Application development
  • Application hosting
  • Compute
  • Data analytics and pipelines
  • Databases
  • Distributed, hybrid, and multicloud
  • Generative AI
  • Industry solutions
  • Networking
  • Observability and monitoring
  • Security
  • Storage
  • Access and resources management
  • Costs and usage management
  • Google Cloud SDK, languages, frameworks, and tools
  • Infrastructure as code
  • Migration
  • Google Cloud Home
  • Free Trial and Free Tier
  • Architecture Center
  • Blog
  • Contact Sales
  • Google Cloud Developer Center
  • Google Developer Center
  • Google Cloud Marketplace
  • Google Cloud Marketplace Documentation
  • Google Cloud Skills Boost
  • Google Cloud Solution Center
  • Google Cloud Support
  • Google Cloud Tech Youtube Channel
  • Home
  • Documentation
  • Distributed, hybrid, and multicloud
  • Google Distributed Cloud
  • GDC for VMware
  • Guides

Configuration files overview

This page lists the configuration files that you use when you create an admin workstation, a load balancer, an admin cluster, and a user cluster:

  • Admin workstation configuration file

  • Admin cluster configuration file

  • User cluster configuration file

  • IP block file

  • Credentials configuration file

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025-10-16 UTC.

  • Why Google

    • Choosing Google Cloud
    • Trust and security
    • Modern Infrastructure Cloud
    • Multicloud
    • Global infrastructure
    • Customers and case studies
    • Analyst reports
    • Whitepapers
  • Products and pricing

    • See all products
    • See all solutions
    • Google Cloud for Startups
    • Google Cloud Marketplace
    • Google Cloud pricing
    • Contact sales
  • Support

    • Community forums
    • Support
    • Release Notes
    • System status
  • Resources

    • GitHub
    • Getting Started with Google Cloud
    • Google Cloud documentation
    • Code samples
    • Cloud Architecture Center
    • Training and Certification
    • Developer Center
  • Engage

    • Blog
    • Events
    • X (Twitter)
    • Google Cloud on YouTube
    • Google Cloud Tech on YouTube
    • Become a Partner
    • Google Cloud Affiliate Program
    • Press Corner
  • About Google
  • Privacy
  • Site terms
  • Google Cloud terms
  • Manage cookies
  • Our third decade of climate action: join us
  • Sign up for the Google Cloud newsletter Subscribe
  • English
  • Deutsch
  • Español – América Latina
  • Français
  • Português – Brasil
  • 中文 – 简体
  • 日本語
  • 한국어