gke/WARN/2022_003

GKE service account permissions to manage project firewall rules.

Product: Google Kubernetes Engine
Rule class: WARN - Something that is possibly wrong

Description

Verify that the Google Kubernetes Engine service account has the Compute Network Admin role or custom role with sufficient fine-grained permissions to manage firewall rules in the current or host project with Shared VPC.

Remediation

Further information

GKE Ingress
Shared VPC