Prerequisites
This guide assumes that your machine has the following tools installed:
-
gcloud(452.0.1 or later) -
occompatible with your cluster version -
docker(as a non-root user) -
anjuna-gcp-cli(version 1.15.0002)
GCP permissions
This guide requires that you have access to the GCP project where the cluster is running. The following roles are expected from your identity:
-
Storage Admin (
roles/storage.admin) -
Artifact Registry Administrator (
roles/artifactregistry.admin) -
Create Service Accounts (
roles/iam.serviceAccountCreator) -
Project IAM Admin (
roles/resourcemanager.projectIamAdmin)
Also, you are required to have access to your cluster via kubectl
with enough access to deploy new non-privileged workloads.
Configure the environment and cluster access
|
If the Anjuna Kubernetes Toolset is not installed to your cluster, follow the cluster setup instructions in the Installing the Anjuna Kubernetes Toolset to OpenShift on GCP section. This is required to proceed. Refer to Validating the Anjuna Seaglass Operator installation and to Verify the Helm Chart installation to verify if the Anjuna Kubernetes Toolset is correctly installed to your cluster. |
In order to correctly configure your environment for the Quickstart tutorials, a subset of the environment variables defined in Configuring your local environment will be needed. Mainly the following:
| Environment variable | Usage |
|---|---|
|
The GCP project name where your cluster has been set up. |
|
The GCP region, such as |
|
The artifact registry used for storing the example Anjuna Confidential Pod container images.
For example: |
|
The path in the container image registry to store the images.
For example: |
|
The absolute path to the directory where the Anjuna Kubernetes Toolset files can be found. |
|
The name of the service account that will be created to enable access to the artifact registry for the Anjuna Kubernetes Toolset images. |
|
The name of a GCP bucket for storing the Confidential Container disk images you will build. |