Installing the NetBackup Snapshot Manager extension on a managed Kubernetes cluster (GKE) in GCP
Following are the permissions required for configuring the Google Kubernetes Engine (GKE) cluster:
For pushing the images to google artifact registry, user must have the write permissions for uploading images to repository. The
artifactregistry.writerrole covers all the required permissions.For more information on pushing the images, see Pushing images to a artifact registry in your project.
The user must have the IAM role assigned to it to configure the Kubernetes extension.
For more information on the role based access control, see Define permissions using Roles or ClusterRoles.
Account associated with GCP provider configuration must have the following permissions for GKE based Kubernetes extension operations:
Permissions for cluster access:
container.clusters.getPermissions for auto scale feature:
compute.instanceGroupManagers.getcompute.instanceGroupManagers.updatecontainer.clusters.getcontainer.clusters.updatecontainer.operations.get