OSDOCS-13735:adding new DNS module

brendan-daly-red-hat · brendan-daly-red-hat · commit f2901d8d874e · 2025-04-24T12:59:51.000+01:00
diff --git a/installing/installing_gcp/installing-gcp-customizations.adoc b/installing/installing_gcp/installing-gcp-customizations.adoc
@@ -48,6 +48,12 @@ include::modules/installation-gcp-enabling-shielded-vms.adoc[leveloffset=+2]
 
 include::modules/installation-gcp-enabling-confidential-vms.adoc[leveloffset=+2]
 
+include::modules/installation-gcp-managing-dns-solution.adoc[leveloffset=+2]
+
+[role="_additional-resources"]
+.Additional resources
+* xref:../../installing/installing_gcp/installation-config-parameters-gcp.adoc#installation-configuration-parameters-additional-gcp_installation-config-parameters-gcp[Installation configuration parameters for GCP]
+
 include::modules/installation-gcp-config-yaml.adoc[leveloffset=+2]
 
 [role="_additional-resources"]
diff --git a/modules/installation-gcp-managing-dns-solution.adoc b/modules/installation-gcp-managing-dns-solution.adoc
@@ -0,0 +1,53 @@
+
+:_mod-docs-content-type: PROCEDURE
+[id="installation-gcp-managing-DNS-solution_{context}"]
+= Managing your own DNS
+
+You can use Confidential VMs when installing your cluster. Confidential VMs encrypt data while it is being processed. For more information, see Google's documentation on link:https://cloud.google.com/confidential-computing[Confidential Computing]. You can enable Confidential VMs and Shielded VMs at the same time, although they are not dependent on each other.
+
+[NOTE]
+====
+Confidential VMs are currently not supported on 64-bit ARM architectures.
+====
+
+.Procedure
+
+* Use a text editor to edit the `install-config.yaml` file prior to deploying your cluster and add one of the following stanzas:
+.. To use confidential VMs for only control plane machines:
++
+[source,yaml]
+----
+controlPlane:
+  platform:
+    gcp:
+       confidentialCompute: Enabled <1>
+       type: n2d-standard-8 <2>
+       onHostMaintenance: Terminate <3>
+----
+<1> Enable confidential VMs.
+<2> Specify a machine type that supports Confidential VMs. Confidential VMs require the N2D or C2D series of machine types. For more information on supported machine types, see link:https://cloud.google.com/compute/confidential-vm/docs/os-and-machine-type#machine-type[Supported operating systems and machine types].
+<3> Specify the behavior of the VM during a host maintenance event, such as a hardware or software update. For a machine that uses Confidential VM, this value must be set to `Terminate`, which stops the VM. Confidential VMs do not support live VM migration.
++
+.. To use confidential VMs for only compute machines:
++
+[source,yaml]
+----
+compute:
+- platform:
+    gcp:
+       confidentialCompute: Enabled
+       type: n2d-standard-8
+       onHostMaintenance: Terminate
+----
++
+.. To use confidential VMs for all machines:
++
+[source,yaml]
+----
+platform:
+  gcp:
+    defaultMachinePlatform:
+       confidentialCompute: Enabled
+       type: n2d-standard-8
+       onHostMaintenance: Terminate
+----
