Commit 34d3e658 authored by Amy Qualls's avatar Amy Qualls Committed by Evan Read

Update cluster docs based on feedback

Small changes for clarity in the cluster documentation.
parent aa82f724
...@@ -12,8 +12,7 @@ projects. ...@@ -12,8 +12,7 @@ projects.
## Cluster precedence ## Cluster precedence
GitLab will try [to match](../../../ci/environments/index.md#scoping-environments-with-specs) clusters in GitLab will try to match clusters in the following order:
the following order:
- Project-level clusters. - Project-level clusters.
- Group-level clusters. - Group-level clusters.
......
...@@ -148,7 +148,7 @@ To create and add a new Kubernetes cluster to your project, group, or instance: ...@@ -148,7 +148,7 @@ To create and add a new Kubernetes cluster to your project, group, or instance:
- **VPC** - Select a [VPC](https://docs.aws.amazon.com/vpc/latest/userguide/what-is-amazon-vpc.html) - **VPC** - Select a [VPC](https://docs.aws.amazon.com/vpc/latest/userguide/what-is-amazon-vpc.html)
to use for your EKS Cluster resources. to use for your EKS Cluster resources.
- **Subnets** - Choose the [subnets](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html) - **Subnets** - Choose the [subnets](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html)
in your VPC where your worker nodes will run. in your VPC where your worker nodes will run. You must select at least two.
- **Security group** - Choose the [security group](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html) - **Security group** - Choose the [security group](https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html)
to apply to the EKS-managed Elastic Network Interfaces that are created in your worker node subnets. to apply to the EKS-managed Elastic Network Interfaces that are created in your worker node subnets.
- **Instance type** - The [instance type](https://aws.amazon.com/ec2/instance-types/) of your worker nodes. - **Instance type** - The [instance type](https://aws.amazon.com/ec2/instance-types/) of your worker nodes.
......
...@@ -24,8 +24,6 @@ requirements are met: ...@@ -24,8 +24,6 @@ requirements are met:
Starting from [GitLab 12.4](https://gitlab.com/gitlab-org/gitlab/-/issues/25925), all the GKE clusters Starting from [GitLab 12.4](https://gitlab.com/gitlab-org/gitlab/-/issues/25925), all the GKE clusters
provisioned by GitLab are [VPC-native](https://cloud.google.com/kubernetes-engine/docs/how-to/alias-ips). provisioned by GitLab are [VPC-native](https://cloud.google.com/kubernetes-engine/docs/how-to/alias-ips).
### Important notes
Note the following: Note the following:
- The [Google authentication integration](../../../integration/google.md) must be enabled in GitLab - The [Google authentication integration](../../../integration/google.md) must be enabled in GitLab
...@@ -38,9 +36,10 @@ Note the following: ...@@ -38,9 +36,10 @@ Note the following:
cluster's pod address IP range will be set to /16 instead of the regular /14. /16 is a CIDR cluster's pod address IP range will be set to /16 instead of the regular /14. /16 is a CIDR
notation. notation.
- GitLab requires basic authentication enabled and a client certificate issued for the cluster to - GitLab requires basic authentication enabled and a client certificate issued for the cluster to
set up an [initial service account](add_remove_clusters.md#access-controls). Starting from [GitLab set up an [initial service account](add_remove_clusters.md#access-controls). In [GitLab versions
11.10](https://gitlab.com/gitlab-org/gitlab-foss/-/issues/58208), the cluster creation process will 11.10 and later](https://gitlab.com/gitlab-org/gitlab-foss/-/issues/58208), the cluster creation process
explicitly request that basic authentication and client certificate is enabled. explicitly requests GKE to create clusters with basic authentication enabled and a client
certificate.
### Creating the cluster on GKE ### Creating the cluster on GKE
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment