Answer-first summary for fast verification
Answer: Generate and submit an attestation to Binary Authorization
Binary Authorization is a security feature provided by Google that ensures only trusted containers are deployed on your GKE cluster. It operates on a policy-driven model for configuring security policies. The service interacts with the Container Analysis service in the background. An attestation is a declaration by an Attestor that an image is approved for deployment. Without submitting this attestation correctly, the deployment will be blocked. The setup involves enabling necessary APIs, creating a Kubernetes cluster with Binary Authorization enabled, setting up a Note, generating PGP keys, and creating an Attestor.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You attempted to deploy a new application image without a signature and encountered the error 'Denied by Attestor'. What is the most likely solution to resolve this issue? (Select One)
A
Renew the Marketplace solution that deployed the app, as it has expired
B
Extract the PGP signature using Putty
C
Enable Cloud Build with the appropriate IAM permissions
D
Generate and submit an attestation to Binary Authorization
E
Contact Google Support, as this appears to be a platform issue