OKM keys not restored after ONTAP cluster expansion
Applies to
- ONTAP 9
- Onboard Key Manager (OKM)
- NetApp Storage Encryption (NSE)
- NetApp Volume Encryption (NVE)
Issue
After new Nodes were added to a Cluster you may experience the following:
security key-manager key show
command reports the following error:
Error: One or more nodes have onboard key management keys that need to be restored. Run the "security key-manager onboard sync" command to restore the onboard key hierarchy on those nodes.
-
command fails and EMS reports:disk encrypt modify
[node01: disk_admin: disk.encryptCmdFailed:error]: Encrypting disk <disk> failed disk encrypt modify command with error status Authentication key not found. (0xe).