1. Home
  2. Tyk Open Source API Gateway v2.x
  3. Configuration
  4. TLS (SSL)


Tyk supports TLS connections, and as of version 2.0 all TLS connections will also support HTTP/2. To enable SSL in your Tyk node, you will need to modify the tyk.conf file to include a server options section like so:

"http_server_options": {
    "use_ssl": true,
    "server_name": "banana.com",
    "min_version": "1.2",
    "certificates": [
            "domain_name": "*.banana.com",
            "cert_file": "new.cert.cert",
            "key_file": "new.cert.key"

You can enter multiple certificates, that link to multiple domain names, this enables you to have multiple SSL certs for your gateways if they are providing access to different domains via the same IP.

The min_version setting is optional, you can set it to 0, 1 or 2 to to have Tyk only accept connections from TLS V1.0, 1.1 and 1.2 respectively.