Merge pull request #84884 from AedinC/OSDOCS-11926

OSDOCS-11926: Added PSC link to WIF overview.

Author: EricPonvelle

modules/private-service-connect-prereqs.adoc

@@ -19,15 +19,15 @@ In addition to the prerequisites that you need to complete before deploying any
 The subnet mask for the PSC service attachment must be /29 or larger and must be dedicated to an individual {product-title} cluster. Additionally, the subnet must be contained within the Machine CIDR range used while provisioning the {product-title} cluster.
 ====
 +
-For information on how to create a VPC on {GCP}, see link:https://cloud.google.com/vpc/docs/create-modify-vpc-networks[Create and manage VPC networks] in the Google Cloud documentation.
+For information about how to create a VPC on {GCP}, see link:https://cloud.google.com/vpc/docs/create-modify-vpc-networks[Create and manage VPC networks] in the Google Cloud documentation.
 
 * Provide a path from the OpenShift Dedicated cluster to the internet for the domains and ports listed in the _GCP firewall prerequisites_ in the _Additional resources_ section.
 
 * Enabled link:https://console.cloud.google.com/marketplace/product/google/iap.googleapis.com?q=search&referrer=search&hl=en&project=openshift-gce-devel[Cloud Identity-Aware Proxy API] at the {GCP} project level.
 
 In addition to the requirements listed above, clusters configured with the **Service Account authentication type** must grant the `IAP-Secured Tunnel User` role to `osd-ccs-admin` service account.
 
-For more information on the prerequisites that must be completed before deploying an {product-title} on {GCP}, see _Additional resources_.
+For more information about the prerequisites that must be completed before deploying an {product-title} on {GCP}, see _Additional resources_.
 
 // [id="prereqs-wif-authentication_{context}"]
 // == Requirements when using Workload Identity Federation authentication type

modules/wif-overview.adoc

@@ -25,7 +25,7 @@ Operators also need access to cloud resources. By using WIF instead of service a
 // * The external application calls Google Security Token Service to exchange the account credentials for a short-lived Google Cloud access token.
 // * The token can then be used to impersonate a service account and access Google Cloud resources.
 
-For more information about Workload Identity Federation, refer to the link:https://cloud.google.com/iam/docs/workload-identity-federation[Google Cloud Platform documentation].
+For more information about Workload Identity Federation, see the link:https://cloud.google.com/iam/docs/workload-identity-federation[Google Cloud Platform documentation].
 
 [IMPORTANT]
 ====

osd_install_access_delete_cluster/creating-a-gcp-cluster-with-workload-identity-federation.adoc

@@ -10,21 +10,27 @@ include::modules/wif-overview.adoc[leveloffset=+1]
 
 [id="osd-creating-a-cluster-on-gcp-prerequisites1_{context}"]
 == Prerequisites
-The following prerequisites must be completed prior to xref:../osd_install_access_delete_cluster/creating-a-gcp-cluster-with-workload-identity-federation.adoc#create-wif-cluster-ocm_osd-creating-a-cluster-on-gcp-with-workload-identity-federation[Creating a Workload Identity Federation cluster using OpenShift Cluster Manager] and xref:../osd_install_access_delete_cluster/creating-a-gcp-cluster-with-workload-identity-federation.adoc#create-wif-cluster-cli_osd-creating-a-cluster-on-gcp-with-workload-identity-federation[Creating a Workload Identity Federation cluster using the OCM CLI].
+You must complete the following prerequisites before xref:../osd_install_access_delete_cluster/creating-a-gcp-cluster-with-workload-identity-federation.adoc#create-wif-cluster-ocm_osd-creating-a-cluster-on-gcp-with-workload-identity-federation[Creating a Workload Identity Federation cluster using OpenShift Cluster Manager] and xref:../osd_install_access_delete_cluster/creating-a-gcp-cluster-with-workload-identity-federation.adoc#create-wif-cluster-cli_osd-creating-a-cluster-on-gcp-with-workload-identity-federation[Creating a Workload Identity Federation cluster using the OCM CLI].
 
 
 * You have confirmed your Google Cloud account has the necessary resource quotas and limits to support your desired cluster size according to the cluster resource requirements.
-
++
 [NOTE]
 ====
 For more information regarding resource quotas and limits, see _Additional resources_.
 ====
 
-* You reviewed the xref:../osd_architecture/osd-understanding.adoc#osd-understanding[introduction to {product-title}] and the documentation on xref:../architecture/index.adoc#architecture-overview[architecture concepts].
-* You reviewed the xref:../osd_getting_started/osd-understanding-your-cloud-deployment-options.adoc#osd-understanding-your-cloud-deployment-options[{product-title} cloud deployment options].
+* You have reviewed the xref:../osd_architecture/osd-understanding.adoc#osd-understanding[introduction to {product-title}] and the documentation on xref:../architecture/index.adoc#architecture-overview[architecture concepts].
+* You have reviewed the xref:../osd_getting_started/osd-understanding-your-cloud-deployment-options.adoc#osd-understanding-your-cloud-deployment-options[{product-title} cloud deployment options].
 
 * You have read and completed the xref:../osd_planning/gcp-ccs.adoc#ccs-gcp-customer-procedure_gcp-ccs[Required customer procedure].
 
+[NOTE]
+====
+WIF supports the deployment of a private {product-title} on {GCP} cluster with Private Service Connect (PSC). Red Hat recommends using PSC when deploying private clusters.
+For more information about the prerequisites for PSC, see xref:../osd_install_access_delete_cluster/creating-a-gcp-psc-enabled-private-cluster.adoc#private-service-connect-prereqs[Prerequisites for Private Service Connect].
+====
+
 include::modules/create-wif-cluster-ocm.adoc[leveloffset=+1]
 include::modules/create-wif-cluster-cli.adoc[leveloffset=+1]
 
@@ -33,7 +39,7 @@ include::modules/create-wif-cluster-cli.adoc[leveloffset=+1]
 * For information about {product-title} clusters using a Customer Cloud Subscription (CCS) model on {GCP}, see xref:../osd_planning/gcp-ccs.adoc#ccs-gcp-customer-requirements_gcp-ccs[Customer requirements].
 * For information about resource quotas, xref:../applications/quotas/quotas-setting-per-project.adoc[Resource quotas per project].
 * For information about limits, xref:../osd_planning/gcp-ccs.adoc#gcp-limits_gcp-ccs[GCP account limits].
-* For information about required  APIs, see xref:../osd_planning/gcp-ccs.adoc#ccs-gcp-customer-procedure_gcp-ccs[Required customer procedure].
+* For information about required APIs, see xref:../osd_planning/gcp-ccs.adoc#ccs-gcp-customer-procedure_gcp-ccs[Required customer procedure].
 * For information about managing workload identity pools, see link:https://cloud.google.com/iam/docs/manage-workload-identity-pools-providers[Manage workload identity pools and providers].
 * For information about managing roles and permissions in your Google Cloud account, see link:https://cloud.google.com/iam/docs/roles-overview[Roles and permissions].
-* For a list of the supported maximums, see xref:../osd_planning/osd-limits-scalability.adoc#tested-cluster-maximums-sd_osd-limits-scalability[Cluster maximums].
+* For a list of the supported maximums, see xref:../osd_planning/osd-limits-scalability.adoc#tested-cluster-maximums-sd_osd-limits-scalability[Cluster maximums].

osd_whats_new/osd-whats-new.adoc

@@ -21,14 +21,14 @@ With its foundation in Kubernetes, {product-title} is a complete {OCP} cluster p
 * **Workload Identity Federation (WIF) authentication type is now available.** {product-title} on Google Cloud Platform (GCP) customers can now use WIF as an authentication type when creating a cluster. WIF is a GCP Identity and Access Management (IAM) feature that provides third parties a secure method to access resources on a customer's cloud account.
 WIF is Google Cloud's preferred method for credential authentication.
 +
-For more information see
+For more information, see
 xref:../osd_install_access_delete_cluster/creating-a-gcp-cluster-with-workload-identity-federation.adoc[Creating a cluster on GCP with Workload Identity Federation].
 
 * **Private Service Connect (PSC) networking feature is now available.** You can now create a private {product-title} cluster on Google Cloud Platform (GCP) using Google Cloud's security-enhanced networking feature Private Service Connect (PSC).
 +
 PSC is a capability of Google Cloud networking that enables private communication between services across different GCP projects or organizations. Implementing PSC as part of your network connectivity allows you to deploy OpenShift Dedicated clusters in a private and secured environment within GCP without using any public-facing cloud resources.
 +
-For more information see xref:../osd_install_access_delete_cluster/creating-a-gcp-psc-enabled-private-cluster.adoc[Creating a GCP Private Service Connect enabled private cluster].
+For more information, see xref:../osd_install_access_delete_cluster/creating-a-gcp-psc-enabled-private-cluster.adoc[Creating a GCP Private Service Connect enabled private cluster].
 
 [id="osd-q3-2024_{context}"]
 === Q3 2024