Each supported platform has its own permission requirements for creating a cluster. After the cluster
is created. As cluster owner, you can proceed to install the Apigee-specific components
(including Apigee, ASM, and cert-manager) into
the cluster. However, if you want to delegate to another user the installation of the runtime
components into the cluster, you can manage the
necessary permissions through
Kubernetes authn-authz.
To install the hybrid runtime components into the cluster, a non-cluster-owner user should
have CRUD permission on these resources:
ClusterRole
Webhooks (ValidatingWebhookConfiguration and MutatingWebhookConfiguration)
PriorityClass
ClusterIssuer
CustomerResourceDefinitions
StorageClass (Optional, if the default StorageClass is not used. For information on
changing the default and creating a custom storage class, see StorageClass configuration.)
Prerequisites
This section describes tasks you must accomplish before you begin the runtime plane quickstart
install.
Complete the following tasks to ensure that you can successfully begin the runtime installation (as described in
this section):
After you have satisfied the above prerequisites, go to the quickstart for your platform:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-06 UTC."],[[["This documentation covers Apigee hybrid version 1.6, which is end of life and requires an upgrade to a newer version."],["Clusters must meet minimum configuration requirements, which are detailed in the minimum cluster configurations section."],["Installing Apigee hybrid components requires specific permissions, including CRUD access to ClusterRole, Webhooks, PriorityClass, ClusterIssuer, CustomerResourceDefinitions, and StorageClass for non-cluster-owner users."],["Before beginning the runtime installation, users must complete the Google Cloud and UI setup steps and have a domain name they can manage for the Apigee hybrid installation."],["Apigee hybrid can be installed in either a shared cluster with other workloads or a dedicated separate cluster, with different considerations for each method."]]],[]]
