The product described by this documentation, Anthos Clusters on AWS (previous generation), is now in maintenance mode. All new installs must use the current generation product, Anthos clusters on AWS.
Stay organized with collections
Save and categorize content based on your preferences.
With Config Management, you can create a common configuration,
including custom policies, across all your infrastructure.
Before you begin
If you host your Config Management repo at a location inaccessible
from your AWS VPC, you must open outbound access to your repository host
from your
node pool security group.
The following list contains default ports based on your git authentication
method:
To enable Config Management to sync Kubernetes configuration files from
a repository or enforce admission control policies, follow the installation
instructions in the
Config Management
documentation.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[],[],null,["# Installing Config Management\n\nWith Config Management, you can create a common configuration,\nincluding custom policies, across all your infrastructure.\n\nBefore you begin\n----------------\n\n- If you host your Config Management repo at a location inaccessible\n from your AWS VPC, you must open outbound access to your repository host\n from your\n [node pool security group](/kubernetes-engine/multi-cloud/docs/aws/previous-generation/reference/security-groups#node_pool_security_group).\n\n The following list contains default ports based on your git authentication\n method:\n\n For more information on modifying AWS security groups, see\n [Security groups for your VPC](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html#AddRemoveRules).\n\nInstalling Config Management\n----------------------------\n\nTo enable Config Management to sync Kubernetes configuration files from\na repository or enforce admission control policies, follow the installation\ninstructions in the\n[Config Management](/anthos-config-management/docs/how-to/installing)\ndocumentation.\n\nWhat's next?\n------------\n\n- Learn about Config Management\n [Configs](/anthos-config-management/docs/concepts/configs).\n\n- [Syncing from multiple repositories](/anthos-config-management/docs/config-sync-quickstart).\n\n- Check the Config Management\n [examples GitHub repository](https://github.com/GoogleCloudPlatform/anthos-config-management-samples).\n\n- Install [Policy Controller](/anthos-config-management/docs/how-to/installing-policy-controller)\n to check, audit, and enforce your cluster's compliance with policies related\n to security, regulations, or business rules."]]
