diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9d6068564..e0d99b09e 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -97,6 +97,7 @@ ENHANCEMENTS:
 ## 2.5.1 (April 06, 2020)
 
 BUGFIXES:
+
 * Support for soft-delete of groups and projects in Gitlab Enterprise Edition 
   ([#282](https://github.com/gitlabhq/terraform-provider-gitlab/issues/282),
    [#283](https://github.com/gitlabhq/terraform-provider-gitlab/issues/283),
diff --git a/gitlab/provider.go b/gitlab/provider.go
index 2f6eb564f..fb30d8e5b 100644
--- a/gitlab/provider.go
+++ b/gitlab/provider.go
@@ -90,6 +90,7 @@ func Provider() terraform.ResourceProvider {
 			"gitlab_project_share_group":        resourceGitlabProjectShareGroup(),
 			"gitlab_group_cluster":              resourceGitlabGroupCluster(),
 			"gitlab_group_ldap_link":            resourceGitlabGroupLdapLink(),
+			"gitlab_instance_cluster":           resourceGitlabInstanceCluster(),
 			"gitlab_project_mirror":             resourceGitlabProjectMirror(),
 			"gitlab_project_level_mr_approvals": resourceGitlabProjectLevelMRApprovals(),
 		},
diff --git a/gitlab/resource_gitlab_instance_cluster.go b/gitlab/resource_gitlab_instance_cluster.go
new file mode 100644
index 000000000..7579e8834
--- /dev/null
+++ b/gitlab/resource_gitlab_instance_cluster.go
@@ -0,0 +1,254 @@
+package gitlab
+
+import (
+	"fmt"
+	"log"
+	"strconv"
+
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/validation"
+	"github.com/xanzy/go-gitlab"
+)
+
+func resourceGitlabInstanceCluster() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceGitlabInstanceClusterCreate,
+		Read:   resourceGitlabInstanceClusterRead,
+		Update: resourceGitlabInstanceClusterUpdate,
+		Delete: resourceGitlabInstanceClusterDelete,
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+
+		Schema: map[string]*schema.Schema{
+			"name": {
+				Type:     schema.TypeString,
+				Required: true,
+			},
+			"domain": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+			"enabled": {
+				Type:     schema.TypeBool,
+				Optional: true,
+				Default:  true,
+				ForceNew: true,
+			},
+			"managed": {
+				Type:     schema.TypeBool,
+				Optional: true,
+				Default:  true,
+				ForceNew: true,
+			},
+			"created_at": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"provider_type": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"platform_type": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"environment_scope": {
+				Type:     schema.TypeString,
+				Optional: true,
+				Default:  "*",
+			},
+			"cluster_type": {
+				Type:     schema.TypeString,
+				Computed: true,
+			},
+			"kubernetes_api_url": {
+				Type:     schema.TypeString,
+				Required: true,
+			},
+			"kubernetes_token": {
+				Type:      schema.TypeString,
+				Required:  true,
+				Sensitive: true,
+			},
+			"kubernetes_ca_cert": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+			"kubernetes_namespace": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+			"kubernetes_authorization_type": {
+				Type:         schema.TypeString,
+				Optional:     true,
+				ForceNew:     true,
+				Default:      "rbac",
+				ValidateFunc: validation.StringInSlice([]string{"rbac", "abac", "unknown_authorization"}, false),
+			},
+			"management_project_id": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+		},
+	}
+}
+
+func resourceGitlabInstanceClusterCreate(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*gitlab.Client)
+
+	pk := gitlab.AddPlatformKubernetesOptions{
+		APIURL: gitlab.String(d.Get("kubernetes_api_url").(string)),
+		Token:  gitlab.String(d.Get("kubernetes_token").(string)),
+	}
+
+	if v, ok := d.GetOk("kubernetes_ca_cert"); ok {
+		pk.CaCert = gitlab.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("kubernetes_authorization_type"); ok {
+		pk.AuthorizationType = gitlab.String(v.(string))
+	}
+
+	options := &gitlab.AddClusterOptions{
+		Name:               gitlab.String(d.Get("name").(string)),
+		Enabled:            gitlab.Bool(d.Get("enabled").(bool)),
+		Managed:            gitlab.Bool(d.Get("managed").(bool)),
+		PlatformKubernetes: &pk,
+	}
+
+	if v, ok := d.GetOk("domain"); ok {
+		options.Domain = gitlab.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("environment_scope"); ok {
+		options.EnvironmentScope = gitlab.String(v.(string))
+	}
+
+	if v, ok := d.GetOk("management_project_id"); ok {
+		options.ManagementProjectID = gitlab.String(v.(string))
+	}
+
+	log.Printf("[DEBUG] create gitlab instance cluster %q", *options.Name)
+
+	cluster, _, err := client.InstanceCluster.AddCluster(options)
+
+	if err != nil {
+		return err
+	}
+
+	clusterIdString := fmt.Sprintf("%d", cluster.ID)
+	d.SetId(clusterIdString)
+
+	return resourceGitlabInstanceClusterRead(d, meta)
+}
+
+func resourceGitlabInstanceClusterRead(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*gitlab.Client)
+
+	clusterId, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return err
+	}
+
+	log.Printf("[DEBUG] read gitlab instance cluster %d", clusterId)
+
+	cluster, _, err := client.InstanceCluster.GetCluster(clusterId)
+	if err != nil {
+		return err
+	}
+
+	d.Set("name", cluster.Name)
+	d.Set("domain", cluster.Domain)
+	d.Set("created_at", cluster.CreatedAt.String())
+	d.Set("provider_type", cluster.ProviderType)
+	d.Set("platform_type", cluster.PlatformType)
+	d.Set("environment_scope", cluster.EnvironmentScope)
+	d.Set("cluster_type", cluster.ClusterType)
+
+	d.Set("kubernetes_api_url", cluster.PlatformKubernetes.APIURL)
+	d.Set("kubernetes_ca_cert", cluster.PlatformKubernetes.CaCert)
+	d.Set("kubernetes_namespace", cluster.PlatformKubernetes.Namespace)
+	d.Set("kubernetes_authorization_type", cluster.PlatformKubernetes.AuthorizationType)
+
+	if cluster.ManagementProject == nil {
+		d.Set("management_project_id", "")
+	} else {
+		d.Set("management_project_id", strconv.Itoa(cluster.ManagementProject.ID))
+	}
+
+	return nil
+}
+
+func resourceGitlabInstanceClusterUpdate(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*gitlab.Client)
+
+	clusterId, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return err
+	}
+
+	options := &gitlab.EditClusterOptions{}
+
+	if d.HasChange("name") {
+		options.Name = gitlab.String(d.Get("name").(string))
+	}
+
+	if d.HasChange("domain") {
+		options.Domain = gitlab.String(d.Get("domain").(string))
+	}
+
+	if d.HasChange("environment_scope") {
+		options.EnvironmentScope = gitlab.String(d.Get("environment_scope").(string))
+	}
+
+	pk := &gitlab.EditPlatformKubernetesOptions{}
+
+	if d.HasChange("kubernetes_api_url") {
+		pk.APIURL = gitlab.String(d.Get("kubernetes_api_url").(string))
+	}
+
+	if d.HasChange("kubernetes_token") {
+		pk.Token = gitlab.String(d.Get("kubernetes_token").(string))
+	}
+
+	if d.HasChange("kubernetes_ca_cert") {
+		pk.CaCert = gitlab.String(d.Get("kubernetes_ca_cert").(string))
+	}
+
+	if d.HasChange("namespace") {
+		pk.Namespace = gitlab.String(d.Get("namespace").(string))
+	}
+
+	if *pk != (gitlab.EditPlatformKubernetesOptions{}) {
+		options.PlatformKubernetes = pk
+	}
+
+	if d.HasChange("management_project_id") {
+		options.ManagementProjectID = gitlab.String(d.Get("management_project_id").(string))
+	}
+
+	if *options != (gitlab.EditClusterOptions{}) {
+		log.Printf("[DEBUG] update gitlab instance cluster %d", clusterId)
+		_, _, err := client.InstanceCluster.EditCluster(clusterId, options)
+		if err != nil {
+			return err
+		}
+	}
+
+	return resourceGitlabInstanceClusterRead(d, meta)
+}
+
+func resourceGitlabInstanceClusterDelete(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*gitlab.Client)
+	clusterId, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return err
+	}
+
+	log.Printf("[DEBUG] delete gitlab instance cluster %d", clusterId)
+
+	_, err = client.InstanceCluster.DeleteCluster(clusterId)
+
+	return err
+}
diff --git a/gitlab/resource_gitlab_instance_cluster_test.go b/gitlab/resource_gitlab_instance_cluster_test.go
new file mode 100644
index 000000000..cac4c3aaf
--- /dev/null
+++ b/gitlab/resource_gitlab_instance_cluster_test.go
@@ -0,0 +1,275 @@
+package gitlab
+
+import (
+	"fmt"
+	"strconv"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/terraform"
+	"github.com/xanzy/go-gitlab"
+)
+
+func TestAccGitlabInstanceCluster_basic(t *testing.T) {
+	var cluster gitlab.InstanceCluster
+	rInt := acctest.RandInt()
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:     func() { testAccPreCheck(t) },
+		Providers:    testAccProviders,
+		CheckDestroy: testAccCheckGitlabInstanceClusterDestroy,
+		Steps: []resource.TestStep{
+			// Create an instance cluster with default options
+			{
+				Config: testAccGitlabInstanceClusterConfig(rInt, true),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckGitlabInstanceClusterExists("gitlab_instance_cluster.foo", &cluster),
+					testAccCheckGitlabInstanceClusterAttributes(&cluster, &testAccGitlabInstanceClusterExpectedAttributes{
+						Name:                        fmt.Sprintf("foo-cluster-%d", rInt),
+						Domain:                      "example.com",
+						EnvironmentScope:            "*",
+						KubernetesApiURL:            "https://123.123.123",
+						KubernetesCACert:            instanceClusterFakeCert,
+						KubernetesAuthorizationType: "abac",
+					}),
+				),
+			},
+			// create an unmanaged cluster
+			{
+				Config: testAccGitlabInstanceClusterConfig(rInt, false),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckGitlabInstanceClusterExists("gitlab_instance_cluster.foo", &cluster),
+					testAccCheckGitlabInstanceClusterAttributes(&cluster, &testAccGitlabInstanceClusterExpectedAttributes{
+						Name:                        fmt.Sprintf("foo-cluster-%d", rInt),
+						Domain:                      "example.com",
+						EnvironmentScope:            "*",
+						KubernetesApiURL:            "https://123.123.123",
+						KubernetesCACert:            instanceClusterFakeCert,
+						KubernetesAuthorizationType: "abac",
+						Managed:                     false,
+					}),
+				),
+			},
+			// Update cluster
+			{
+				Config: testAccGitlabInstanceClusterUpdateConfig(rInt, "abac"),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckGitlabInstanceClusterExists("gitlab_instance_cluster.foo", &cluster),
+					testAccCheckGitlabInstanceClusterAttributes(&cluster, &testAccGitlabInstanceClusterExpectedAttributes{
+						Name:                        fmt.Sprintf("foo-cluster-%d", rInt),
+						Domain:                      "example-new.com",
+						EnvironmentScope:            "*",
+						KubernetesApiURL:            "https://124.124.124",
+						KubernetesCACert:            instanceClusterFakeCert,
+						KubernetesAuthorizationType: "abac",
+					}),
+				),
+			},
+			// Update authorization type cluster
+			{
+				Config: testAccGitlabInstanceClusterUpdateConfig(rInt, "rbac"),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckGitlabInstanceClusterExists("gitlab_instance_cluster.foo", &cluster),
+					testAccCheckGitlabInstanceClusterAttributes(&cluster, &testAccGitlabInstanceClusterExpectedAttributes{
+						Name:                        fmt.Sprintf("foo-cluster-%d", rInt),
+						Domain:                      "example-new.com",
+						EnvironmentScope:            "*",
+						KubernetesApiURL:            "https://124.124.124",
+						KubernetesCACert:            instanceClusterFakeCert,
+						KubernetesAuthorizationType: "rbac",
+					}),
+				),
+			},
+			// Create cluster with management_project_id
+			{
+				Config: testAccGitlabInstanceClusterConfig(rInt, true),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckGitlabInstanceClusterExists("gitlab_instance_cluster.foo", &cluster),
+					testAccCheckGitlabInstanceClusterAttributes(&cluster, &testAccGitlabInstanceClusterExpectedAttributes{
+						Name:                        fmt.Sprintf("foo-cluster-%d", rInt),
+						Domain:                      "example.com",
+						EnvironmentScope:            "*",
+						KubernetesApiURL:            "https://123.123.123",
+						KubernetesCACert:            instanceClusterFakeCert,
+						KubernetesAuthorizationType: "abac",
+					}),
+				),
+			},
+		},
+	})
+}
+
+func TestAccGitlabInstanceCluster_import(t *testing.T) {
+	rInt := acctest.RandInt()
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:     func() { testAccPreCheck(t) },
+		Providers:    testAccProviders,
+		CheckDestroy: testAccCheckGitlabInstanceClusterDestroy,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccGitlabInstanceClusterConfig(rInt, true),
+			},
+			{
+				ResourceName:            "gitlab_instance_cluster.foo",
+				ImportState:             true,
+				ImportStateVerify:       true,
+				ImportStateVerifyIgnore: []string{"enabled", "kubernetes_token", "managed"},
+			},
+		},
+	})
+}
+
+type testAccGitlabInstanceClusterExpectedAttributes struct {
+	Name                        string
+	Domain                      string
+	EnvironmentScope            string
+	KubernetesApiURL            string
+	KubernetesCACert            string
+	KubernetesAuthorizationType string
+	ManagementProjectID         string
+	Managed                     bool
+}
+
+func testAccCheckGitlabInstanceClusterExists(n string, cluster *gitlab.InstanceCluster) resource.TestCheckFunc {
+	return func(s *terraform.State) error {
+		rs, ok := s.RootModule().Resources[n]
+		if !ok {
+			return fmt.Errorf("not found: %q", n)
+		}
+
+		instanceClusterID, err := strconv.Atoi(rs.Primary.ID)
+		if err != nil {
+			return err
+		}
+
+		conn := testAccProvider.Meta().(*gitlab.Client)
+
+		gotCluster, _, err := conn.InstanceCluster.GetCluster(instanceClusterID)
+		if err != nil {
+			return err
+		}
+
+		*cluster = *gotCluster
+
+		return nil
+	}
+}
+
+func testAccCheckGitlabInstanceClusterDestroy(s *terraform.State) error {
+	conn := testAccProvider.Meta().(*gitlab.Client)
+
+	for _, rs := range s.RootModule().Resources {
+		if rs.Type != "gitlab_instance_cluster" {
+			continue
+		}
+
+		instanceClusterID, err := strconv.Atoi(rs.Primary.ID)
+		if err != nil {
+			return err
+		}
+
+		gotCluster, resp, err := conn.InstanceCluster.GetCluster(instanceClusterID)
+
+		if err == nil {
+			if gotCluster != nil && gotCluster.ID == instanceClusterID {
+				return fmt.Errorf("instance cluster still exists")
+			}
+		}
+		if resp.StatusCode != 404 {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func testAccCheckGitlabInstanceClusterAttributes(cluster *gitlab.InstanceCluster, want *testAccGitlabInstanceClusterExpectedAttributes) resource.TestCheckFunc {
+	return func(s *terraform.State) error {
+		if cluster.Name != want.Name {
+			return fmt.Errorf("got name %q; want %q", cluster.Name, want.Name)
+		}
+
+		if cluster.Domain != want.Domain {
+			return fmt.Errorf("got domain %q; want %q", cluster.Domain, want.Domain)
+		}
+
+		if cluster.EnvironmentScope != want.EnvironmentScope {
+			return fmt.Errorf("got environment scope %q; want %q", cluster.EnvironmentScope, want.EnvironmentScope)
+		}
+
+		if cluster.PlatformKubernetes.APIURL != want.KubernetesApiURL {
+			return fmt.Errorf("got kubernetes api url %q; want %q", cluster.PlatformKubernetes.APIURL, want.KubernetesApiURL)
+		}
+
+		if cluster.PlatformKubernetes.CaCert != want.KubernetesCACert {
+			return fmt.Errorf("got kubernetes ca cert %q; want %q", cluster.PlatformKubernetes.CaCert, want.KubernetesCACert)
+		}
+
+		if cluster.PlatformKubernetes.AuthorizationType != want.KubernetesAuthorizationType {
+			return fmt.Errorf("got kubernetes authorization type %q; want %q", cluster.PlatformKubernetes.AuthorizationType, want.KubernetesAuthorizationType)
+		}
+
+		return nil
+	}
+}
+
+func testAccGitlabInstanceClusterConfig(rInt int, managed bool) string {
+	m := fmt.Sprintf("%t", managed)
+	fmt.Println(m)
+
+	return fmt.Sprintf(`
+variable "cert" {
+  default = <<EOF
+%s
+EOF
+}
+
+resource gitlab_instance_cluster "foo" {
+  name                          = "foo-cluster-%d"
+  domain                        = "example.com"
+  managed                       = "%s"
+  kubernetes_api_url            = "https://123.123.123"
+  kubernetes_token              = "some-token"
+	kubernetes_ca_cert            = "${trimspace(var.cert)}"
+  kubernetes_authorization_type = "abac"
+}
+`, instanceClusterFakeCert, rInt, m)
+}
+
+func testAccGitlabInstanceClusterUpdateConfig(rInt int, authType string) string {
+	return fmt.Sprintf(`
+variable "cert" {
+  default = <<EOF
+%s
+EOF
+}
+
+resource gitlab_instance_cluster "foo" {
+  name                          = "foo-cluster-%d"
+  domain                        = "example-new.com"
+  kubernetes_api_url            = "https://124.124.124"
+  kubernetes_token              = "some-token"
+  kubernetes_ca_cert            = "${trimspace(var.cert)}"
+  kubernetes_authorization_type = "%s"
+}
+`, instanceClusterFakeCert, rInt, authType)
+}
+
+var instanceClusterFakeCert = `-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----`
diff --git a/website/docs/r/instance_cluster.html.markdown b/website/docs/r/instance_cluster.html.markdown
new file mode 100644
index 000000000..ea3947428
--- /dev/null
+++ b/website/docs/r/instance_cluster.html.markdown
@@ -0,0 +1,64 @@
+---
+layout: "gitlab"
+page_title: "GitLab: gitlab_instance_cluster"
+sidebar_current: "docs-gitlab-resource-instance_cluster"
+description: |-
+  Creates and manages instance clusters for GitLab instances
+---
+
+# gitlab\_instance\_cluster
+
+This resource allows you to create and manage instance clusters for your GitLab instances.
+For further information on clusters, consult the [gitlab
+documentation](https://docs.gitlab.com/ee/user/instance/clusters/).
+
+## Example Usage
+
+```hcl
+resource gitlab_instance_cluster "bar" {
+  name                          = "bar-cluster"
+  domain                        = "example.com"
+  enabled                       = true
+  kubernetes_api_url            = "https://124.124.124"
+  kubernetes_token              = "some-token"
+  kubernetes_ca_cert            = "some-cert"
+  kubernetes_namespace          = "namespace"
+  kubernetes_authorization_type = "rbac"
+  environment_scope             = "*"
+  management_project_id         = "123456"
+}
+```
+
+## Argument Reference
+
+The following arguments are supported:
+
+- `name` - (Required, string) The name of cluster.
+
+- `domain` - (Optional, string) The base domain of the cluster.
+
+- `enabled` - (Optional, boolean) Determines if cluster is active or not. Defaults to `true`. This attribute cannot be read.
+
+- `managed` - (Optional, boolean) Determines if cluster is managed by gitlab or not. Defaults to `true`. This attribute cannot be read.
+
+- `kubernetes_api_url` - (Required, string) The URL to access the Kubernetes API.
+
+- `kubernetes_token` - (Required, string) The token to authenticate against Kubernetes. This attribute cannot be read.
+
+- `kubernetes_ca_cert` - (Optional, string) TLS certificate (needed if API is using a self-signed TLS certificate).
+
+- `kubernetes_namespace` - (Optional, string) The unique namespace related to the instance.
+
+- `kubernetes_authorization_type` - (Optional, string) The cluster authorization type. Valid values are `rbac`, `abac`, `unknown_authorization`. Defaults to `rbac`.
+
+- `environment_scope` - (Optional, string) The associated environment to the cluster. Defaults to `*`.
+
+- `management_project_id` - (Optional, string) The ID of the management project for the cluster.
+
+## Import
+
+GitLab instance clusters can be imported using a `clusterid`, e.g.
+
+```shell
+terraform import gitlab_instance_cluster.bar 123
+```
diff --git a/website/gitlab.erb b/website/gitlab.erb
index 9a4404c59..47fc42d5d 100644
--- a/website/gitlab.erb
+++ b/website/gitlab.erb
@@ -102,6 +102,9 @@
           <li<%= sidebar_current("docs-gitlab-resource-project_variable") %>>
           <a href="/docs/providers/gitlab/r/project_variable.html">gitlab_project_variable</a>
           </li>
+          <li<%= sidebar_current("docs-gitlab-resource-instance_cluster") %>>
+            <a href="/docs/providers/gitlab/r/instance_cluster.html">gitlab_instance_cluster</a>
+          </li>
           <li<%= sidebar_current("docs-gitlab-resource-service_github") %>>
             <a href="/docs/providers/gitlab/r/service_github.html">gitlab_service_github</a>
           </li>