KES Documentation
Customer Login

Documentation

kes policy rm

Overview

Remove a policy name from the KES server. Removing a policy prevents clients authenticating with an identity associated to that policy from performing any operations on the KES server.

Syntax 

kes policy rm                       \
           <name>                   \
           [--enclave, -e <name>]   \
           [--insecure, -k]

Parameters

name

Required

The short name of the policy to remove. To remove more than one policy name, separate multiple policy names with commas.

--enclave, -e

Optional

The short name of the KES enclave to output information about.

--insecure, -k

Optional

Directs the command to skip x.509 certificate validation during the TLS handshake with the KES server. This allows connections to KES servers using untrusted certificates (i.e. self-signed or issued by an unknown Certificate Authority).

MinIO strongly recommends against using this option in production environments.

Examples

Remove a policy:

kes policy rm my-policy

Remove two policies:

kes policy rm my-policy1, my-policy2