When using GKE with Workload Identity, what must be configured to allow a pod to access a GCP service?

Google Cloud (GCP) Hard

Google Cloud (GCP) — Hard

When using GKE with Workload Identity, what must be configured to allow a pod to access a GCP service?

Key points

  • Annotating the Kubernetes Service Account is crucial for Workload Identity.
  • The iam.workloadIdentityUser role facilitates GCP service access.
  • Other methods, like mounting JSON key files, are not applicable here.
  • GCP Service Accounts are not directly assigned to node pools for this purpose.

Ready to go further?

Start full exam Practice more questions

Related questions