minkms rm-identity

Remove one or more identities from an enclave. When an identity is removed, it can no longer authenticate to the enclave. Any service accounts associated with the identity are also automatically deleted.

The following settings determine which remote Key Manager server the command runs against in order of priority:

The MINIO_KMS_SERVER environment variable.
The default value of https://localhost:7373.

SYNTAX

minkms rm-identity      \
  NAME...               \
  [-a | --api-key KEY]  \
  [-e | --enclave NAME] \
  [-k | --insecure]

PARAMETERS

`NAME`

Required, Repeatable

The name(s) of the identity or identities to remove.

`--api-key`

Optional

Alias : -a

The API key of an identity the command uses to authenticate to the Key Manager cluster. Defaults to the value of MINIO_KMS_API_KEY.

`--enclave`

Optional

Alias : -e

Delete identity within ENCLAVE.

`--insecure`

Optional

Alias : -k

Skip server certificate verification.

Permissions

Removing an identity requires enclave admin or SysAdmin privileges.