I’m trying to set guardrails for cluster creation in my organization and was looking at container.managed.enableControlPlaneDNSOnlyAccess policy.
When trying it out, it seems not to work correctly when creating a GKE cluster.
I have enabled DNS endpoint and disabled IPv4 endpoint, but the policy prevents cluster creation.
When modifying existing cluster, this policy takes effect as expected.
It seems like a bug, or am I misunderstanding something?