This directory contains a Google Cloud Deployment Manager template for getting up-and-running with a Google Cloud Kubernetes Engine cluster with Istio included.

If you have the Google Cloud SDK installed (get it here), you can create a new deployment via the command:

$ gcloud deployment-manager deployments create my-istio-deployment --config=istio-cluster.yaml

NOTE: You must grant your default compute service account the correct permissions before creating the deployment. Otherwise, the installation will fail. Make sure that your default compute service account (by default [PROJECT_NUMBER][email protected]) includes the following roles:

• roles/container.admin (Container Engine Admin)
• roles/editor (included by default)

You can set this permission by navigating to the IAM section of the Google Cloud Console, viewing the permissions for your default compute service account ([PROJECT_NUMBER][email protected]), and making sure that both Editor (roles/editor) and Container Engine Admin (roles/container.admin) are selected.

See the file istio-cluster.yaml and istio-cluster.schema for details on customization. Note that you can override a parameter at the command line. For example:

$ gcloud deployment-manager deployments create my-istio-deployment --template=istio-cluster.jinja --properties enableMutualTLS:false,gkeClusterName:istio-gke