This page explains how to enable Binary Authorization in your deployer project.
You first create or select a project. You enable Binary Authorization in the Google Cloud project where you deploy containers. This is the same project where you run your supported platforms, such as Google Kubernetes Engine (GKE), Cloud Run, or Google Distributed Cloud.
To enable Binary Authorization, follow these steps:
- Sign in to your Google Cloud account. If you're new to Google Cloud, create an account to evaluate how our products perform in real-world scenarios. New customers also get $300 in free credits to run, test, and deploy workloads.
-
In the Google Cloud console, on the project selector page, select or create a Google Cloud project.
-
Verify that billing is enabled for your Google Cloud project.
-
Enable the Binary Authorization API.
-
Install the Google Cloud CLI.
-
If you're using an external identity provider (IdP), you must first sign in to the gcloud CLI with your federated identity.
-
To initialize the gcloud CLI, run the following command:
gcloud init -
In the Google Cloud console, on the project selector page, select or create a Google Cloud project.
-
Verify that billing is enabled for your Google Cloud project.
-
Enable the Binary Authorization API.
-
Install the Google Cloud CLI.
-
If you're using an external identity provider (IdP), you must first sign in to the gcloud CLI with your federated identity.
-
To initialize the gcloud CLI, run the following command:
gcloud init
Binary Authorization is enabled. You can now set it up with your container management platform.
What's next
- Set up Binary Authorization continuous validation with GKE (Preview)
- Set up Binary Authorization enforcement with GKE
- Set up Binary Authorization with Cloud Run
- Set up Binary Authorization with Distributed Cloud