The product described by this documentation, Anthos Clusters on AWS (previous generation), is now in maintenance mode. All new installs must use the current generation product, Anthos clusters on AWS.
You can learn about the components of GKE on AWS in
Architecture. There are additional
concept topics that explain how GKE on AWS handles
Authentication,
Security,
Storage, as well as
others.
Management service
A management service creates, updates, and
deletes GKE on AWS clusters. You have the following options
to install a management service:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-25 UTC."],[],[],null,["# GKE on AWS installation overview\n\nTo create your GKE on AWS environment, perform the following steps:\n\n1. Complete the [Prerequisites](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/prerequisites)\n2. Install the [management service](#management_service)\n3. [Create user clusters](#user_clusters) to run your workloads\n\nBefore you begin\n----------------\n\nYou can learn about the components of GKE on AWS in\n[Architecture](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/concepts/architecture). There are additional\nconcept topics that explain how GKE on AWS handles\n[Authentication](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/concepts/authentication),\n[Security](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/concepts/security),\n[Storage](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/concepts/storage), as well as\n[others](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/concepts).\n\nManagement service\n------------------\n\nA [management service](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/concepts/architecture) creates, updates, and\ndeletes GKE on AWS clusters. You have the following options\nto install a management service:\n\n- [Install a management service](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/installing-management) into a dedicated AWS Virtual Private Cloud (VPC).\n- [Integrate with an existing VPC](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/integrating-existing-infrastructure).\n- Configure your management service to [use an HTTP proxy](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/using-a-proxy).\n\nUser clusters\n-------------\n\nAfter you install a management service, create your user clusters.\nChoose from one of the following options to create the user cluster:\n\n- [Create a user cluster](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/creating-user-cluster) with default parameters.\n- [Create a custom user cluster](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/creating-custom-user-cluster), for example if you want to add node pools with different machine types.\n- [Create a user cluster with workload identity](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/workload-identity-cluster) if you want to assign different AWS IAM roles to each workload.\n- If you want to view, monitor, debug, and manage workloads from Google Cloud console, set up your cluster to use Connect using the instructions in [Connecting to your cluster with Google Cloud console](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/connecting-to-a-cluster).\n\nWhat's next\n-----------\n\nAfter you have installed a management service and created user clusters,\nyou are ready to launch workloads. Try one of the following:\n\n- [Launch your first workload](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/quickstart) on\n GKE on AWS.\n\n- Configure and create an [Ingress](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/ingress) with\n Cloud Service Mesh.\n\n- Create an externally facing deployment using a\n [load balancer](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/loadbalancer) or an\n AWS [application load balancer](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/how-to/loadbalancer-alb)."]]
