title: 自己署名証明書 description: > NOTE: Using self-signed certificates is not fully supported within the platform although minimal
自己署名証明書¶
NOTE: Using self-signed certificates is not fully supported within the platform although minimal support is provided for backwards compatibility with older releases. Using self-signed certs, although convenient and easy to setup, is inherently insecure because of the challenges with establishing trust between the cliend and server. Customers are encouraged to use Custom CA instead as more secure option for TLS.
Historically, using self-signed certificates has been supported for:
- Ingress
- Object Storage (s3-compatible providers)
- Private Container Registry
When using self-signed certs, clients connect over an encrypted TLS channel but server certificate validation is disabled.
To disable TLS verification, configure ALLOW_SELF_SIGNED_CERTS: true in the chart values.