As a cloud administrator, you can create a Google Cloud Platform (GCP) cloud account for account regions to which your team will deploy vRealize Automation Cloud cloud templates.
- Verify that you have the required administrator credentials and have enabled HTTPS access on port 443. See Credentials required for working with cloud accounts in vRealize Automation Cloud.
- Verify that you have the required user role. See What are the vRealize Automation Cloud user roles.
- Verify that you have access to the Google Cloud Platform JSON security key.
- Verify that you have required security information for your Google Cloud Platform instance. You can obtain most of this information from your instance or from the Google documentation.
- In Cloud Assembly, select and click Add Cloud Account.
- Select the Google Cloud Platform account type and enter the appropriate credentials and related information. Use the service account that was created when the source GCP account compute engine was initialized.
As noted in the Prerequisites section above, credential requirements are available at Credentials required for working with cloud accounts in vRealize Automation Cloud. To successfully create the cloud account in vRealize Automation Cloud, the source GCP account must have the compute engine service enabled.
In vRealize Automation Cloud, the project ID is part of the Google Cloud Platform endpoint. You specify it when you create the cloud account. During data collection of project-specific private images, the vRealize Automation Cloud GCP adapter queries the Google Cloud Platform API.
- Click Validate.
The account regions associated with the account are collected.
- Select the regions to which you want to provision this resource.
- For efficiency, click Create a Cloud zone for the selected regions.
- If you need tags to support a tagging strategy, enter capability tags. See How do I use tags to manage Cloud Assembly resources and deployments and Creating a tagging strategy.
For more information about how capability tags and constraint tags help control deployment placements, see the Constraint Tags and Placement video tutorial.
- Click Add.
The account is added to vRealize Automation Cloud, and the selected regions are available for the specified cloud zone.
What to do next
Create infrastructure resources for this cloud account.
The following paragraphs provide some information on deploying a Google Cloud Platform virtual machine from Cloud Assembly.
When you add a Google Cloud Platform cloud account to a Cloud Assembly cloud template, you can use the
useSoleTenant YAML property to indicate that you want to deploy a virtual machine to a sole tenant node. This configuration enables you to isolate virtual machines for security, privacy or others issues.
To facilitate this functionality, Google Cloud Platform node affinity labels are converted to tags in Cloud Assembly, and these tags are applied on relevant vRealize Automation Cloud availability zones where node groups reside. When the
useSoleTenant property is set to true, constraint tags must be one of the node affinity labels. Also, to deploy a machine in sole tenant mode, you must include the
useSoleTenant property in the cloud template as well as the constraint tags.
Before using this feature, you must create the appropriate node template and node affinity labels inGoogle Cloud Platform and then create a node group.
The following YAML example shows how the
useSoleTenant property can be used in Cloud Assembly cloud templates. The constraint tags are the node affinity labels that were auto-collected from your Google Cloud Platform server.
resources: Cloud_GCP_Machine_1: type: Cloud.GCP.Machine properties: image: ubuntu flavor: c2-family name: demo-vm useSoleTenant: true constraints: -tag: 'env:prod' -tag: 'region:asia-east1'