Skip to main content
Google Cloud Documentation
Documentation Technology areas
  • AI and ML
  • Application development
  • Application hosting
  • Compute
  • Data analytics and pipelines
  • Databases
  • Distributed, hybrid, and multicloud
  • Generative AI
  • Industry solutions
  • Networking
  • Observability and monitoring
  • Security
  • Storage
Cross-product tools
  • Access and resources management
  • Costs and usage management
  • Google Cloud SDK, languages, frameworks, and tools
  • Infrastructure as code
  • Migration
/
Console
  • English
  • Deutsch
  • Español
  • Español – América Latina
  • Français
  • Indonesia
  • Italiano
  • Português
  • Português – Brasil
  • 中文 – 简体
  • 中文 – 繁體
  • 日本語
  • 한국어
Sign in
  • Binary Authorization
Start free
Overview Guides Reference Support Resources
Google Cloud Documentation
  • Documentation
    • Overview
    • Guides
    • Reference
    • Support
    • Resources
  • Technology areas
    • More
  • Cross-product tools
    • More
  • Console
  • Binary Authorization
  • Product overview
  • Software supply chain security
  • About Binary Authorization
  • Binary Authorization concepts
  • GA migration guide
  • Explore
  • Quickstarts
    • Continuous validation monitoring
      • Monitor Pod security with continuous validation
    • Enforcement
      • Allow all and disallow all (GKE)
      • Allow all and disallow all (Cloud Run)
      • Exempt images (GKE)
  • Tutorials
    • Get started using the command-line interface
    • Get started using the Cloud console
    • Configure a multi-project setup
  • Get started
  • Set up Binary Authorization
    • Enable the service
    • Set up by platform
    • Set up for GKE
      • Overview
      • Configure cross-project access in GKE
      • Create a cluster
      • Enable enforcement on an existing cluster
    • Set up for Cloud Run
      • Overview
      • Enable Binary Authorization
      • Require Binary Authorization
    • Set up for clusters outside Google Cloud
      • Google Distributed Cloud overview
      • Set up for on-premises clusters
    • Set up for Service Mesh
      • Overview
  • Use attestations to deploy signed images
    • Overview
    • Deploy only images built by Cloud Build
    • Create attestors
      • Use the command-line interface
      • Use the Cloud console
      • Use the REST API
    • Create attestations
    • View related tutorials
      • Create attestations with Cloud Build
      • Create attestations with OpenSSF Scorecard
  • Configure a policy
    • Use the command-line interface
    • Use the Cloud console
    • Use the REST API
  • Operate and maintain
  • Deploy
    • Deploy containers (GKE, Google Distributed Cloud)
    • Use breakglass (GKE, Google Distributed Cloud)
    • Use breakglass (Cloud Run)
    • Enable dry run mode
  • Disable Binary Authorization
    • On a GKE cluster
    • For Cloud Run
  • Use continuous validation
    • Continuous validation overview
    • Use the policy evaluation service
    • Require continuous validation check-based platform policies for GKE
    • Use the image freshness check
    • Use the simple signing attestation check
    • Use the Sigstore signature check
    • Use the SLSA check
    • Use the trusted directory check
    • Use the vulnerability check
    • Manage platform policies
    • Enable at fleet level
    • Use legacy continuous validation
    • View continuous validation logs
  • Secure with VPC Service Controls
  • Use custom organization policies
  • Integrate with third-party tools
  • Log and monitor
  • Audit logging overview
  • View audit logs
    • GKE
    • Cloud Run
    • Google Distributed Cloud
  • Monitor metrics (Google Distributed Cloud)
  • AI and ML
  • Application development
  • Application hosting
  • Compute
  • Data analytics and pipelines
  • Databases
  • Distributed, hybrid, and multicloud
  • Generative AI
  • Industry solutions
  • Networking
  • Observability and monitoring
  • Security
  • Storage
  • Access and resources management
  • Costs and usage management
  • Google Cloud SDK, languages, frameworks, and tools
  • Infrastructure as code
  • Migration
  • Home
  • Documentation
  • Security
  • Binary Authorization
  • Guides

Set up Binary Authorization for your platform
Stay organized with collections Save and categorize content based on your preferences.

This page provides platform-specific links to set up Binary Authorization for use with your platform.

To set up Binary Authorization, click the link for your platform from the following list:

  • Google Kubernetes Engine (GKE)
  • Cloud Run
  • Google Distributed Cloud
  • Cloud Service Mesh

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025-10-18 UTC.

  • Products and pricing

    • See all products
    • Google Cloud pricing
    • Google Cloud Marketplace
    • Contact sales

  • Support

    • Google Cloud Community
    • Support
    • Release Notes
    • System status

  • Resources

    • GitHub
    • Getting Started with Google Cloud
    • Code samples
    • Cloud Architecture Center
    • Training and Certification

  • Engage

    • Blog
    • Events
    • X (Twitter)
    • Google Cloud on YouTube
    • Google Cloud Tech on YouTube
  • About Google
  • Privacy
  • Site terms
  • Google Cloud terms
  • Manage cookies
  • Our third decade of climate action: join us
  • Sign up for the Google Cloud newsletter Subscribe
  • English
  • Deutsch
  • Español
  • Español – América Latina
  • Français
  • Indonesia
  • Italiano
  • Português
  • Português – Brasil
  • 中文 – 简体
  • 中文 – 繁體
  • 日本語
  • 한국어