DEV Community: Tristan Habert The latest articles on DEV Community by Tristan Habert (@trihab). https://dev.to/trihab https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3802580%2Fa98177e0-3831-4b2d-8932-09dcfd64ac2e.JPEG DEV Community: Tristan Habert https://dev.to/trihab en ArgoCD on GKE Autopilot Tristan Habert Wed, 04 Mar 2026 14:46:46 +0000 https://dev.to/trihab/argocd-on-gke-autopilot-oe1 https://dev.to/trihab/argocd-on-gke-autopilot-oe1 <p>In this article, I want to share with you my recent experience with <strong>GKE</strong> to deploy a CD tool like <strong>ArgoCD</strong>. I will use <strong>Terraform</strong> to deploy the GKE cluster and deploy my <strong>Helm chart</strong> within the newly created cluster.</p> <p>Here's what it will look like:</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmoini295alfdu80rxwy2.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmoini295alfdu80rxwy2.png" alt="cluster-schema" width="800" height="383"></a></p> <h2> Prerequisites </h2> <ul> <li> <strong>Terraform</strong> v1.0.0+</li> <li> <strong>gcloud cli</strong> authenticated</li> <li>gcloud plugin <strong>gke-gcloud-auth-plugin</strong> </li> <li> <strong>kubectl</strong> binary</li> <li> <strong>Service account</strong> with the required permissions (following Least Privilege principle) and its <strong>access key</strong>.</li> </ul> <h2> Setup </h2> <p>Firstly, we need to do is to add the Terraform <strong>providers</strong> for <strong>Helm</strong> and for our <strong>GKE cluster</strong>. Create the file <code>providers.tf</code>. Add these lines to specify where Kubernetes and Helm resources must apply:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># providers.tf</span> <span class="k">provider</span> <span class="s2">"kubernetes"</span> <span class="p">{</span> <span class="nx">host</span> <span class="p">=</span> <span class="s2">"https://</span><span class="k">${data</span><span class="p">.</span><span class="nx">google_container_cluster</span><span class="p">.</span><span class="nx">my_cluster</span><span class="p">.</span><span class="nx">endpoint</span><span class="k">}</span><span class="s2">"</span> <span class="nx">token</span> <span class="p">=</span> <span class="k">data</span><span class="p">.</span><span class="nx">google_client_config</span><span class="p">.</span><span class="nx">default</span><span class="p">.</span><span class="nx">access_token</span> <span class="nx">cluster_ca_certificate</span> <span class="p">=</span> <span class="nx">base64decode</span><span class="p">(</span><span class="k">data</span><span class="p">.</span><span class="nx">google_container_cluster</span><span class="p">.</span><span class="nx">my_cluster</span><span class="p">.</span><span class="nx">master_auth</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">cluster_ca_certificate</span><span class="p">)</span> <span class="p">}</span> <span class="k">provider</span> <span class="s2">"helm"</span> <span class="p">{</span> <span class="nx">kubernetes</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">host</span> <span class="p">=</span> <span class="s2">"https://</span><span class="k">${data</span><span class="p">.</span><span class="nx">google_container_cluster</span><span class="p">.</span><span class="nx">my_cluster</span><span class="p">.</span><span class="nx">endpoint</span><span class="k">}</span><span class="s2">"</span> <span class="nx">token</span> <span class="p">=</span> <span class="k">data</span><span class="p">.</span><span class="nx">google_client_config</span><span class="p">.</span><span class="nx">default</span><span class="p">.</span><span class="nx">access_token</span> <span class="nx">cluster_ca_certificate</span> <span class="p">=</span> <span class="nx">base64decode</span><span class="p">(</span><span class="k">data</span><span class="p">.</span><span class="nx">google_container_cluster</span><span class="p">.</span><span class="nx">my_cluster</span><span class="p">.</span><span class="nx">master_auth</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">cluster_ca_certificate</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>As you can see we use variables referenced as <strong>data sources</strong>. So let's create the file <code>data.tf</code>. Then add the data sources.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># data.tf</span> <span class="k">data</span> <span class="s2">"google_container_cluster"</span> <span class="s2">"my_cluster"</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"autopilot-cluster-1"</span> <span class="nx">location</span> <span class="p">=</span> <span class="kd">var</span><span class="p">.</span><span class="nx">region</span> <span class="nx">project</span> <span class="p">=</span> <span class="kd">var</span><span class="p">.</span><span class="nx">project_id</span> <span class="p">}</span> <span class="k">data</span> <span class="s2">"google_client_config"</span> <span class="s2">"default"</span> <span class="p">{}</span> </code></pre> </div> <p>The client config fetch a <strong>short-live token</strong> in order to access your cluster.</p> <p>Then we create the <code>variables.tf</code>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># variables.tf</span> <span class="k">variable</span> <span class="s2">"project_id"</span> <span class="p">{</span> <span class="nx">type</span> <span class="p">=</span> <span class="nx">string</span> <span class="p">}</span> <span class="k">variable</span> <span class="s2">"region"</span> <span class="p">{</span> <span class="nx">type</span> <span class="p">=</span> <span class="nx">string</span> <span class="p">}</span> </code></pre> </div> <h3> Terraform state </h3> <p>Terraform is a stateful language. It means that it stores the state of each services deployed. Every time you run <code>terraform plan/apply</code> it will check the state file to determine which resource needs to be deployed or edited. We have multiple ways to store it. In my case, I chose to store it on <strong>Gitlab</strong>. It is easy to setup you just need your gitlab personal token with scope set to <strong>api</strong>. Create a <code>backend.tf</code> file.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># backend.tf</span> <span class="k">terraform</span> <span class="p">{</span> <span class="nx">backend</span> <span class="s2">"http"</span> <span class="p">{</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>When you run your <code>terraform init</code> command, you will need to specify the backend config. Gitlab gives you the template command :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">export </span><span class="nv">GITLAB_ACCESS_TOKEN</span><span class="o">=</span>&lt;YOUR-ACCESS-TOKEN&gt; <span class="nb">export </span><span class="nv">TF_STATE_NAME</span><span class="o">=</span>argo-state terraform init <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"address=https://gitlab.example.com/api/v4/projects/&lt;id&gt;/terraform/state/</span><span class="nv">$TF_STATE_NAME</span><span class="s2">"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"lock_address=https://gitlab.example.com/api/v4/projects/&lt;id&gt;/terraform/state/</span><span class="nv">$TF_STATE_NAME</span><span class="s2">/lock"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"unlock_address=https://gitlab.example.com/api/v4/projects/&lt;id&gt;/terraform/state/</span><span class="nv">$TF_STATE_NAME</span><span class="s2">/lock"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"username=&lt;your-user&gt;"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"password=</span><span class="nv">$GITLAB_ACCESS_TOKEN</span><span class="s2">"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"lock_method=POST"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"unlock_method=DELETE"</span> <span class="se">\</span> <span class="nt">-backend-config</span><span class="o">=</span><span class="s2">"retry_wait_min=5"</span> </code></pre> </div> <h2> Part 1: Helm chart </h2> <p>In the first part, we will focus on ArgoCD deployment. I am going to use the <a href="https://argoproj.github.io/argo-helm" rel="noopener noreferrer">official chart</a>. Let's create our first file <code>main.tf</code>. I will put all the Kubernetes resources in it. Declare the following resource:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># main.tf</span> <span class="k">resource</span> <span class="s2">"helm_release"</span> <span class="s2">"argocd"</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd"</span> <span class="nx">repository</span> <span class="p">=</span> <span class="s2">"https://argoproj.github.io/argo-helm"</span> <span class="nx">chart</span> <span class="p">=</span> <span class="s2">"argo-cd"</span> <span class="nx">namespace</span> <span class="p">=</span> <span class="nx">kubernetes_namespace_v1</span><span class="p">.</span><span class="nx">argocd_ns</span><span class="p">.</span><span class="nx">metadata</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">name</span> <span class="nx">create_namespace</span> <span class="p">=</span> <span class="kc">false</span> <span class="nx">version</span> <span class="p">=</span> <span class="s2">"9.4.6"</span> <span class="nx">values</span> <span class="p">=</span> <span class="p">[</span> <span class="nx">file</span><span class="p">(</span><span class="s2">"values/argocd-values.yaml"</span><span class="p">)]</span> <span class="nx">depends_on</span> <span class="p">=</span> <span class="p">[</span> <span class="nx">kubernetes_manifest</span><span class="p">.</span><span class="nx">argocd_backend_config</span> <span class="p">]</span> <span class="p">}</span> </code></pre> </div> <p>You can either set 'create_namespace = true' or create the namespace using a kubernetes resource like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="k">resource</span> <span class="s2">"kubernetes_namespace_v1"</span> <span class="s2">"argocd_ns"</span> <span class="p">{</span> <span class="nx">metadata</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd"</span> <span class="nx">labels</span> <span class="p">=</span> <span class="p">{</span> <span class="s2">"name"</span> <span class="p">=</span> <span class="s2">"argocd"</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Now, let's create the values file. It contains the <strong>basic setup</strong> of the deployment. Inside you can <strong>configure resource limitation</strong> that can be useful considering the billing method in use by GKE. Also consider using Spot VMs to allows us to save up to 60-90% on infrastructure costs. <br> Here is the values file I use:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># argocd-values.yaml</span> <span class="na">global</span><span class="pi">:</span> <span class="na">domain</span><span class="pi">:</span> <span class="s">argo.example.com</span> <span class="na">nodeSelector</span><span class="pi">:</span> <span class="na">cloud.google.com/gke-spot</span><span class="pi">:</span> <span class="s2">"</span><span class="s">true"</span> <span class="na">tolerations</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">key</span><span class="pi">:</span> <span class="s2">"</span><span class="s">cloud.google.com/gke-spot"</span> <span class="na">operator</span><span class="pi">:</span> <span class="s2">"</span><span class="s">Equal"</span> <span class="na">value</span><span class="pi">:</span> <span class="s2">"</span><span class="s">true"</span> <span class="na">effect</span><span class="pi">:</span> <span class="s2">"</span><span class="s">NoSchedule"</span> <span class="na">server</span><span class="pi">:</span> <span class="c1"># Run multiple replicas for high availability</span> <span class="na">replicas</span><span class="pi">:</span> <span class="m">1</span> <span class="na">service</span><span class="pi">:</span> <span class="na">type</span><span class="pi">:</span> <span class="s">NodePort</span> <span class="na">annotations</span><span class="pi">:</span> <span class="na">cloud.google.com/backend-config</span><span class="pi">:</span> <span class="s1">'</span><span class="s">{"default":</span><span class="nv"> </span><span class="s">"argocd-backend-config"}'</span> <span class="c1"># Resource limits prevent runaway memory consumption</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s">500m</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">512Mi</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s">100m</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">256Mi</span> <span class="c1"># Enable metrics for Prometheus scraping</span> <span class="na">metrics</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">serviceMonitor</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">controller</span><span class="pi">:</span> <span class="c1"># Controller handles sync operations - scale for large deployments</span> <span class="na">replicas</span><span class="pi">:</span> <span class="m">1</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s">1000m</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">1Gi</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s">250m</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">512Mi</span> <span class="na">repoServer</span><span class="pi">:</span> <span class="c1"># Repo server renders Helm templates - critical for performance</span> <span class="na">replicas</span><span class="pi">:</span> <span class="m">1</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s">1000m</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">1Gi</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s">250m</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">512Mi</span> <span class="na">configs</span><span class="pi">:</span> <span class="na">params</span><span class="pi">:</span> <span class="c1"># Disable TLS for internal communication (use ingress for external TLS)</span> <span class="na">server.insecure</span><span class="pi">:</span> <span class="kc">true</span> </code></pre> </div> <h2> Part 2: Networking </h2> <p>Now that we have our ArgoCD ready, we need to <strong>expose</strong> the argo-server service to ensure its access from outside. For that we will create an <strong>ingress</strong> that trigger the creation of an <strong>external application load balancer (L7)</strong> by GKE. We need to reserve a static external IP address for the ALB. For our ArgoCD to be secured, we let GCP generate a SSL certificate for our domain name using <em>ManagedCertificate</em>.</p> <p>Let's start with the ingress config:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># main.tf</span> <span class="k">resource</span> <span class="s2">"kubernetes_ingress_v1"</span> <span class="s2">"argo_ingress"</span> <span class="p">{</span> <span class="nx">metadata</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd-ingress"</span> <span class="nx">namespace</span> <span class="p">=</span> <span class="nx">kubernetes_namespace_v1</span><span class="p">.</span><span class="nx">argocd_ns</span><span class="p">.</span><span class="nx">metadata</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">name</span> <span class="nx">annotations</span> <span class="p">=</span> <span class="p">{</span> <span class="s2">"kubernetes.io/ingress.class"</span> <span class="p">=</span> <span class="s2">"gce"</span> <span class="s2">"kubernetes.io/ingress.global-static-ip-name"</span> <span class="p">=</span> <span class="s2">"argocd-static-ip"</span> <span class="s2">"networking.gke.io/managed-certificates"</span> <span class="p">=</span> <span class="s2">"argo-cert"</span> <span class="s2">"cloud.google.com/backend-config"</span> <span class="p">=</span> <span class="nx">jsonencode</span><span class="p">({</span> <span class="s2">"default"</span> <span class="p">=</span> <span class="s2">"argocd-backend-config"</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> <span class="nx">spec</span> <span class="p">{</span> <span class="nx">rule</span> <span class="p">{</span> <span class="nx">host</span> <span class="p">=</span> <span class="s2">"argo.example.com"</span> <span class="nx">http</span> <span class="p">{</span> <span class="nx">path</span> <span class="p">{</span> <span class="nx">path</span> <span class="p">=</span> <span class="s2">"/"</span> <span class="nx">path_type</span> <span class="p">=</span> <span class="s2">"Prefix"</span> <span class="nx">backend</span> <span class="p">{</span> <span class="nx">service</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd-server"</span> <span class="nx">port</span> <span class="p">{</span> <span class="nx">number</span> <span class="p">=</span> <span class="mi">80</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>I created a new file for the load balancer resources named <code>lb-gke.tf</code>. Inside, you reserve the IP address for the ALB. Then you create the backend config that is required for the ALB to perform health checks on your service, as well as the frontend configuration that automatically redirects HTTP requests to HTTPS. Lastly, you use the cert manager to provide an SSL certificate.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="c1"># lb-gke.tf</span> <span class="k">resource</span> <span class="s2">"google_compute_global_address"</span> <span class="s2">"argocd_static_ip"</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd-static-ip"</span> <span class="nx">project</span> <span class="p">=</span> <span class="kd">var</span><span class="p">.</span><span class="nx">project_id</span> <span class="p">}</span> <span class="k">resource</span> <span class="s2">"kubernetes_manifest"</span> <span class="s2">"argocd_backend_config"</span> <span class="p">{</span> <span class="nx">manifest</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">apiVersion</span> <span class="p">=</span> <span class="s2">"cloud.google.com/v1"</span> <span class="nx">kind</span> <span class="p">=</span> <span class="s2">"BackendConfig"</span> <span class="nx">metadata</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd-backend-config"</span> <span class="nx">namespace</span> <span class="p">=</span> <span class="s2">"argocd"</span> <span class="p">}</span> <span class="nx">spec</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">healthCheck</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">checkIntervalSec</span> <span class="p">=</span> <span class="mi">30</span> <span class="nx">timeoutSec</span> <span class="p">=</span> <span class="mi">5</span> <span class="nx">healthyThreshold</span> <span class="p">=</span> <span class="mi">1</span> <span class="nx">unhealthyThreshold</span> <span class="p">=</span> <span class="mi">2</span> <span class="nx">type</span> <span class="p">=</span> <span class="s2">"HTTP"</span> <span class="nx">requestPath</span> <span class="p">=</span> <span class="s2">"/healthz"</span> <span class="nx">port</span> <span class="p">=</span> <span class="mi">8080</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="nx">depends_on</span> <span class="p">=</span> <span class="p">[</span> <span class="nx">kubernetes_namespace_v1</span><span class="p">.</span><span class="nx">argocd_ns</span> <span class="p">]</span> <span class="p">}</span> <span class="k">resource</span> <span class="s2">"kubernetes_manifest"</span> <span class="s2">"argocd_frontend_config"</span> <span class="p">{</span> <span class="nx">manifest</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">apiVersion</span> <span class="p">=</span> <span class="s2">"networking.gke.io/v1beta1"</span> <span class="nx">kind</span> <span class="p">=</span> <span class="s2">"FrontendConfig"</span> <span class="nx">metadata</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argocd-frontend-config"</span> <span class="nx">namespace</span> <span class="p">=</span> <span class="s2">"argocd"</span> <span class="p">}</span> <span class="nx">spec</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">redirectToHttps</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">enabled</span> <span class="p">=</span> <span class="kc">true</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">resource</span> <span class="s2">"kubernetes_manifest"</span> <span class="s2">"argocd_managed_cert"</span> <span class="p">{</span> <span class="nx">manifest</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">apiVersion</span> <span class="p">=</span> <span class="s2">"networking.gke.io/v1"</span> <span class="nx">kind</span> <span class="p">=</span> <span class="s2">"ManagedCertificate"</span> <span class="nx">metadata</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">=</span> <span class="s2">"argo-cert"</span> <span class="nx">namespace</span> <span class="p">=</span> <span class="nx">kubernetes_namespace_v1</span><span class="p">.</span><span class="nx">argocd_ns</span><span class="p">.</span><span class="nx">metadata</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">name</span> <span class="p">}</span> <span class="nx">spec</span> <span class="p">=</span> <span class="p">{</span> <span class="nx">domains</span> <span class="p">=</span> <span class="p">[</span><span class="s2">"argo.example.com"</span><span class="p">]</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Part 3: Deploy your ArgoCD </h2> <p>We are done with the config. Now it is time to deploy !</p> <p>Create the file <code>outputs.tf</code> and add these lines :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight terraform"><code><span class="k">output</span> <span class="s2">"argocd_lb_ip"</span> <span class="p">{</span> <span class="nx">value</span> <span class="p">=</span> <span class="nx">google_compute_global_address</span><span class="p">.</span><span class="nx">argocd_static_ip</span><span class="p">.</span><span class="nx">address</span> <span class="p">}</span> </code></pre> </div> <p>Once Terraform has finished applying, it will output the reserved IP address for your ALB. </p> <p>Then, run your <em>init</em> command and the <code>terraform plan</code> command to ensure it deploys the right resources. Finally, run the <code>terraform apply</code> command. </p> <p>There you go! You have your ArgoCD deployed.</p> gcp gke devops argocd