The product described by this documentation, Anthos Clusters on AWS (previous generation), is now in maintenance mode. All new installs must use the current generation product, Anthos clusters on AWS.

Installing Config Management

With Config Management, you can create a common configuration, including custom policies, across all your infrastructure.

Before you begin

If you host your Config Management repo at a location inaccessible from your AWS VPC, you must open outbound access to your repository host from your node pool security group.

The following list contains default ports based on your git authentication method:

Authentication method Port

SSH key pair 22

Cookiefile 443

Personal access token 443

Google Cloud service account 443

For more information on modifying AWS security groups, see Security groups for your VPC.

Authentication method	Port
SSH key pair	22
Cookiefile	443
Personal access token	443
Google Cloud service account	443

Installing Config Management

To enable Config Management to sync Kubernetes configuration files from a repository or enforce admission control policies, follow the installation instructions in the Config Management documentation.

What's next?

Learn about Config Management Configs.
Syncing from multiple repositories.
Check the Config Management examples GitHub repository.
Install Policy Controller to check, audit, and enforce your cluster's compliance with policies related to security, regulations, or business rules.