Categories
Kubernetes

Kubernetes: Create GKE Cluster with Terraform

Install brew install terraform Service Account IAM & admin > Service accounts, and click + CREATE SERVICE ACCOUNT. I gave the role Project > Editor because I am also using this Service Account to create a VPC network. Click CONTINUE. OR if you are only creating a GKE cluster, you can simply assign the roles Kubernetes > Kubernetes […]

Categories
Kubernetes

Kubernetes: Google-managed SSL Certificates using ManagedCertificate on GKE

I previously went over how to create SSL Certificates using cert-manager, but Google also has a GKE specific way of somewhat doing the same thing by using a custom resource called ManagedCertificate. https://cloud.google.com/kubernetes-engine/docs/how-to/managed-certs Create Deployment kubectl run nginx –image=nginx –labels=app=nginx –port=80 –replicas=2 Create Service kubectl expose deployment nginx –port=80 –target-port=80 –name=nginx-svc –type=NodePort Create Static IP […]

Categories
Kubernetes

Kubernetes: cert-manager on GKE using Let’s Encrypt

Updated: 2020-06-18 The cert-manager project Automatically provisions and renews TLS certificates in Kubernetes. It supports using your own certificate authority, self signed certificates, certificates managed by the Hashicorp Vault PKI, and of course the free certificates issued by Let’s Encrypt. If you followed my last post, I automated DNS using external-dns. Now it’s time to automate SSL Certificates with […]

Categories
Kubernetes

Kubernetes: Automated DNS with External-DNS on GKE

Updated: 2020-06-17 I’ll be using a helm chart to install external-dns on my Kubernetes GKE cluster. https://github.com/bitnami/charts/tree/master/bitnami/external-dns Create zone https://cloud.google.com/dns/docs/quickstart Create GCP service account Create a GCP service account to enable an account to edit Cloud DNS. export PROJECT_NAME=[YOUR_PROJECT_NAME] # create service account gcloud iam service-accounts create k8s-external-dns \ –display-name=”Service Account to support ACME DNS-01 […]

Categories
gcp

Managing Multiple Accounts in GCP

Add an account. gcloud config configurations create [CONFIG_NAME] Example gcloud config configurations create my-account Setup the new configuration. gcloud init List config. gcloud config configurations list NAME IS_ACTIVE ACCOUNT PROJECT DEFAULT_ZONE DEFAULT_REGION default False user1@domain1.com project-1 us-west1-a us-west1 my-account True user2@domain2.com project-2 us-west1-a us-west1 List active account. gcloud auth list Credentialed Accounts ACTIVE ACCOUNT user1@domain1.com […]