google-kubernetes-engine downtime workload-identity

Does enabling "workload identity" in an existing gke and nodepool has any downtime?

I don't seem to find any documentation mentioning if there would be any downtime when a gke cluster is edited to activate workload identity.

I would like to know if there is any downtime

while enabling it in an existing cluster
while enabling it in an existing node pool

Tried reaching out to gcp team through feedback link, but they suggested to reach to stackexchange

Solution

We went ahead and tried this out

Enabling workload-identity at the cluster level has downtime to the control plane (no editing of the cluster possible; but existing workloads are unaffected)
Enabling workload-identity at the node-pool level recreates nodes (gke automatically cordons and recreates nodes

Rabbit mq - Error while waiting for Mnesia tables
GKE Fluent bit partial logs
How to forcefully stop an operation on GKE cluster and thereby delete GKE cluster?
GKE autoscaling
Java application unable to find ADC when Workload Identity is enabled on GKE cluster
Certmanager tries to use HTTPS inside the cluster and fails when it gets self signed certificates
List all available ingress controllers on Kubernetes
How does k8 traffic flow internally?
How to prioritize node pools in GKE for autoscaler when using multiple spot instance node pools with different machine types?
Is there a Google Cloud Run startupProbe setting or similar for initial delay
How do I add the x-forwarded-for field to my access logs for the nginx ingress controller?
How to switch kubectl clusters between gcloud and minikube
Kustomize patch doesn't patch base values - GKE Managed Certs
GKE has an IAM roles/container.clusterViewer, How can I duplicate that on EKS? Read only kubectl access on EKS by default for all authenticated users?
Problem installing Issuer (cert-manager) inside GKE cluster tls: failed to verify certificate: x509: certificate signed by unknown authority
GKE Autopilot: How to add/manage SSL Certificate to GKE autopilot
GKE Ingress shows unhealthy backend services
How to download linux kernel headers for Google container optimized OS
How do I get the External IP of a Kubernetes service as a raw value?
how to connect a kubernetes pod to the outside world without a forwarding rule (google container engine)
Manage terminationGracePeriodSeconds over 600 seconds
Why can't I attach a service type ClusterIP to Ingress on GKE?
How to Access GKE Private Master from VPN in Hub VPC with Peering
Pulling docker image in GKE
HPA unable to find "untyped" custom metric from Prometheus / Stackdriver adapter
How to change PV storageClass of Strimzi kafka cluster
Unable Spawn new notebook using Custom Kubespawner in Jupyterhub
How can I find GKE's control plane logs?
How does minReadySeconds affect readiness probe?
How to SSH to docker container in kubernetes cluster?