Settings

The AIStor Key Manager process supports the following environment variables for controlling process behavior.

MINIO_LICENSE

Required

Specify either the plaintext string or path to a plaintext file containing the minio.license file downloaded from SUBNET

MINIO_HSM_KMS_KEY

Required

The Hardware Security Module (HSM) key to use for cryptographic and authentication operations.

Specify the output of minkms --soft-hsm.

You can remove this variable after configuring at least one external HSM.

MINIO_KMS_SERVER

Required

Specify a comma separated list Key Manager server hostnames to perform operations against when using minkms CLI commands. For example:

MINIO_KMS_SERVER=https://minkms-1.example.net:7373,https://minkms-2.example.net:7373,https://minkms-3.example.net:7373

This environment variable is only required for performing client API operations. If omitted, minkms commands default connecting to 127.0.0.1:7373. Commands which support or require specifying a HOST[:PORT] use that value as a priority over this environment variable.

MINIO_KMS_API_KEY

Required

Specify the API key of an identity to use when authenticating to a Key Manager server.

This environment variable is only required for performing client API operations.

MINIO_KMS_ENCLAVE

Optional

Specify the enclave to use when performing a client API operation.

All Rights Reserved 2024-Present, MinIO, Inc.