minkms add-identity

Create a new identity. Identities act as a ‘user’ in context of Key Manager and allow policy-controlled access to cluster operations.

The following settings determine which remote Key Manager server the command runs against in order of priority:

  1. The MINIO_KMS_SERVER environment variable.
  2. The default value of https://localhost:7373.

SYNTAX

minkms add              \
  [IDENTITY]...         \
  [-a | --api-key KEY]  \
  [-e | --enclave NAME] \
  [--admin]             \
  [--service]           \
  [-k | --insecure]

PARAMETERS

IDENTITY

Optional, Repeatable

The name(s) of the identity or identities to create.

--api-key

Optional

Alias : -a

The API key of an identity the command uses to authenticate to the Key Manager cluster. Defaults to the value of MINIO_KMS_API_KEY.

--enclave

Optional

Alias : -e

Add the identity to the specified ENCLAVE.

--admin

Optional

Create identity with enclave admin privileges.

--service

Optional

Create identity as service account that inherits permissions from the user specified to --api-key.

--insecure

Optional

Alias : -k

Skip server certificate verification.

All Rights Reserved 2024-Present, MinIO, Inc.