欢迎来到即将发布的 MinIO 文档版本! 此页面上的内容正在积极开发中 可能随时更改。 如果找不到您要找的内容,请查看我们的 历史文档。 感谢您的耐心等待。 我们期待您贡献自己强大的力量,帮助更多的中国技术开发者![翻译]

MinIO Transport Layer Security

Table of Contents

Overview

The MinIO server supports enabling TLS encryption of incoming and outgoing traffic. MinIO recommends all MinIO servers run with TLS enabled to ensure end-to-end security of client-server or server-server transmissions.

The MinIO server looks for a private key private.key and public certificate public.crt in the following directories:

  • Linux/OSX : ${HOME}/.minio/certs

  • Windows : %%USERPROFILE%%\.minio\certs

MinIO only supports keys and certificates in the PEM format.

You can customize the certificate directory by passing the --certs-dir option to minio server. The certs directory must also include any intermediate certificates required to establish a chain of trust to the root CA.

For more information, see How to secure access to MinIO server with TLS.