Prerequisites
You will begin with an administration computer with the Anjuna CLI installed, and a GCP Project for creating cloud resources. Then, you will create and configure various cloud resources needed to deploy the Anjuna Policy Manager (APM).
Administration computer
This guide requires a host computer for executing commands for deployment of the
APM server and client systems.
The Anjuna CLI has been tested on Ubuntu 20.04 based systems,
although it should be possible to use other operating systems as well.
All commands are executed in a terminal window, preferably running the bash
shell.
Anjuna CLI for SEV on GCP
The Anjuna CLI for SEV on GCP is required. Consult the Quickstart guide for the Anjuna Confidential Container for installation instructions and prerequisites.
Many of the commands in subsequent sections assume the Anjuna executables are accessible in the PATH environment variable. This can be accomplished by running the following command (for the default install path):
$ source /opt/anjuna/gcp/env.sh
GCP project
A GCP project is required to deploy the APM. See Create a Google Cloud project for instructions to create a project, if you do not already have one for this purpose. The majority of GCP operations in this guide are performed within the context of the chosen project.
Enable GCP APIs
Several GCP services are required for the deployment of the APM server and client systems. The following APIs must be activated in your GCP account (service name in parentheses):
-
Compute Engine API (
compute.googleapis.com
) -
Cloud Key Management Service (KMS) API (
cloudkms.googleapis.com
) -
Cloud Storage (
storage-component.googleapis.com
) -
Secret Manager API (
secretmanager.googleapis.com
)
Instructions to enable GCP APIs can be found in Enabling an API in your Google Cloud project.