Binary Authorization documentation

Read product documentation

Binary Authorization is a service on Google Cloud that provides centralized software supply-chain security for applications that run on Google Kubernetes Engine (GKE), Cloud Run, and Distributed Cloud. Learn more

Get started for free
  • Get access to Gemini 2.0 Flash Thinking
  • Free monthly usage of popular products, including AI APIs and BigQuery
  • No automatic charges, no commitment
View free product offers

Keep exploring with 20+ always-free products

Access 20+ free products for common use cases, including AI APIs, VMs, data warehouses, and more.

Documentation resources

Find quickstarts and guides, review key references, and get help with common issues.
Explore self-paced training, use cases, reference architectures, and code samples with examples of how to use and connect Google Cloud services.
Training
Training and tutorials

This lab describes how to secure a GKE cluster using Binary Authorization.

GKE

Learn more
Training
Training and tutorials

Add deploy-time policy enforcement to your GKE cluster.

GKE

Learn more
Training
Training and tutorials

Get up and running quickly with GKE and Binary Authorization with this end-to-end getting started tutorial.

GKE

Learn more
Training
Training and tutorials

Use different projects to restrict access for different activities, enforcing separation of duties.

GKE

Learn more
Training
Training and tutorials

View audit logs for Binary Authorization events.

GKE Cloud Audit Logs

Learn more
Training
Training and tutorials

View audit logs for Binary Authorization events for Google Distributed Cloud.

GKE on-prem Cloud Audit Logs

Learn more
Training
Training and tutorials

Monitor metrics from Binary Authorization for GKE on-prem.

GKE on-prem Cloud Monitoring

Learn more
Use case
Use cases

Details instrumentation and tools used in forensic analysis for apps deployed to GKE.

Security Container analysis

Learn more
Use case
Use cases

Shows you how to ensure that your supply chain follows a known and secure path before you deploy your code in a GKE cluster.

DevOps

Learn more
Code sample
Code Samples

With Google Provider for Terraform, you can configure your Google Cloud infrastructure.

Learn more
Code sample
Code Samples

Create Binary Authorization attestors.

Learn more
Code sample
Code Samples

Three different resources help you manage your IAM policy for Binary Authorization Attestor.

Learn more
Code sample
Code Samples

Configure a Binary Authorization policy.

Learn more

Related videos