Gcp Notes: Difference between revisions

From Federal Burro of Information
Jump to navigationJump to search
No edit summary
No edit summary
Line 10: Line 10:


https://cloud.google.com/sdk/gcloud/reference/compute/instances/create
https://cloud.google.com/sdk/gcloud/reference/compute/instances/create
== OS Login ==
so you want to jsut ssh into the vm like you do everyting else, you don't want to use
gcloud c
or the "in browser" ssh client.
great , you want "OS Login"
lots of steps:
1. for the VM set the enable-oslogin meta data value to "TRUE"
in tf like this:
<pre>
  metadata  = {
    enable-oslogin = "TRUE"
  }
</pre>
2. give the user the correct roles:
Computer OS Login ( for vanilla , non-root access )
Compute OS Admin login ( for root access via sudo )
via comnad line this I think:
<pre>
gcloud projects add-iam-policy-binding project-ID --member \
serviceAccount:"velos-manager@project-ID.iam.gserviceaccount.com" \
--role "roles/iam.serviceAccountUser"
--no-user-output-enabled --quiet
</pre>





Revision as of 14:46, 13 January 2020

Overview

Storage

Types of storage, how to choose:

https://cloud.google.com/storage-options/

Compute

https://cloud.google.com/sdk/gcloud/reference/compute/instances/create

OS Login

so you want to jsut ssh into the vm like you do everyting else, you don't want to use

gcloud c

or the "in browser" ssh client.

great , you want "OS Login"

lots of steps:

1. for the VM set the enable-oslogin meta data value to "TRUE"

in tf like this:

  metadata  = {
    enable-oslogin = "TRUE"
  }

2. give the user the correct roles:

Computer OS Login ( for vanilla , non-root access )
Compute OS Admin login ( for root access via sudo )

via comnad line this I think:

gcloud projects add-iam-policy-binding project-ID --member \
 serviceAccount:"velos-manager@project-ID.iam.gserviceaccount.com" \
 --role "roles/iam.serviceAccountUser"
 --no-user-output-enabled --quiet


How Tos

single node NFS
https://medium.com/google-cloud/gke-with-google-cloud-single-node-filer-nfs-4c4dc569964f

Reading

Hashes and ETags
Best Practices
https://cloud.google.com/storage/docs/hashes-etags