During the node unjoin process unable to open the SEDs
Applies to
- ONTAP 9
- FAS
- AFF
- NetApp Storage Encryption (NSE)
Issue
- Unable to unjoin node from the cluster
cluster1::> priv set advanced
cluster1::*> cluster remove-node -node node1
Error: command failed: Cannot remove node "node1" because its self-encrypting drives use authentication keys (AKs) that will not be available to the node after it leaves the cluster. Use the "storage encryption disk show" and "storage encryption disk modify" commands to set the FIPS and data AKs of devices owned by the node and the failover partner to the default manufacture secure ID (MSID), keyID 0x0
- Despite opening the SEDs (Self Encrypting Drives) the keys are reported as missing.
cluster1::*> storage encryption disk modify -fips-key-id 0x0 -disk 2.0.*
cluster1::*> storage encryption disk modify -data-key-id 0x0 -disk 2.0.*
cluster1::*> storage encryption disk show
Disk Mode Data Key ID
-------- ---- -------------
2.0.0 open 0x0
2.0.1 miss -
2.0.2 open 0x0
2.0.3 miss -
2.0.4 open 0x0
2.0.5 miss -