Table of Contents
The MinIO server supports enabling TLS encryption of incoming and outgoing traffic. MinIO recommends all MinIO servers run with TLS enabled to ensure end-to-end security of client-server or server-server transmissions.
The MinIO server looks for a private key
private.key and public certificate
public.crt in the following directories:
MinIO only supports keys and certificates in the PEM format.
You can customize the certificate directory by passing the
minio server. The
certs directory must also include any
intermediate certificates required to establish a chain of trust to the root CA.
For more information, see How to secure access to MinIO server with TLS.