Connect GKE clusters through cluster certificates (deprecated)

Tier: Free, Premium, Ultimate Offering: GitLab.com, Self-managed
History
caution
This feature was deprecated in GitLab 14.5. Use Infrastructure as Code to create a cluster hosted on Google Kubernetes Engine (GKE).

Through GitLab, you can create new and connect existing clusters hosted on Google Kubernetes Engine (GKE).

Connect an existing GKE cluster

If you already have a GKE cluster and want to connect it to GitLab, use the GitLab agent.

Create a new GKE cluster from GitLab

All GKE clusters provisioned by GitLab are VPC-native.

To create a new GKE cluster from GitLab, use Infrastructure as Code.

Create a new cluster on GKE through cluster certificates

History

Prerequisites:

Note the following:

  • The Google authentication integration must be enabled in GitLab at the instance level. If that’s not the case, ask your GitLab administrator to enable it. On GitLab.com, this is enabled.
  • All GKE clusters created by GitLab are RBAC-enabled. Take a look at the RBAC section for more information.
  • The cluster’s pod address IP range is set to /16 instead of the regular /14. /16 is a CIDR notation.
  • GitLab requires basic authentication enabled and a client certificate issued for the cluster to set up an initial service account. In GitLab versions 11.10 and later, the cluster creation process explicitly requests GKE to create clusters with basic authentication enabled and a client certificate.

To create new Kubernetes clusters to your project, group, or instance, through cluster certificates:

  1. Go to your:
    • Project’s Operate > Kubernetes clusters page, for a project-level cluster.
    • Group’s Kubernetes page, for a group-level cluster.
    • The Admin area’s Kubernetes page, for an instance-level cluster.
  2. Select Integrate with a cluster certificate.
  3. Under the Create new cluster tab, select Google GKE.
  4. Connect your Google account if you haven’t done already by selecting the Sign in with Google button.
  5. Choose your cluster’s settings:
    • Kubernetes cluster name - The name you wish to give the cluster.
    • Environment scope - The associated environment to this cluster.
    • Google Cloud Platform project - Choose the project you created in your GCP console to host the Kubernetes cluster. For more information, see Creating and managing projects.
    • Zone - Choose the region zone under which to create the cluster.
    • Number of nodes - Enter the number of nodes you wish the cluster to have.
    • Machine type - The machine type of the Virtual Machine instance to base the cluster on.
    • Enable Cloud Run for Anthos - Check this if you want to use Cloud Run for Anthos for this cluster. See the Cloud Run for Anthos section for more information.
    • GitLab-managed cluster - Leave this checked if you want GitLab to manage namespaces and service accounts for this cluster. See the Managed clusters section for more information.
  6. Finally, select the Create Kubernetes cluster button.

After a couple of minutes, your cluster is ready.

Cloud Run for Anthos

You can choose to use Cloud Run for Anthos in place of installing Knative and Istio separately after the cluster has been created. This means that Cloud Run (Knative), Istio, and HTTP Load Balancing are enabled on the cluster from the start, and cannot be installed or uninstalled.