When running a distributed MinIO cluster, simply copy the same public.crt and private.key to all MinIO nodes such that all nodes have identical certs/ directories. rw- 461 minio public.crt ⟵ The TLS certificate rw- 119 minio private.key ⟵ The TLS private key. All MinIO needs is a TLS private key and certificate that should be mounted under certs/ in MinIO's config directory. Therefore, we have to configure MinIO to accept and serve requests over TLS.Ĭonceptually, this is very easy to do. Securing Ingressįirst, let’s focus on securing the incoming data streams. However, first we will focus on getting the basics right and, only after we have secured the incoming and outgoing connections and put access controls in place, will we tackle the more nuanced aspects.