Skip to main content
NetApp Knowledge Base

VEK key remains cached on node after NVE is deleted and removed from external key server

Views:
130
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

Applies to

  • ONTAP 9
  • External key server 
  • NetApp Volume Encryption (NVE)

Issue

NVE volume was deleted and afterwards when run "security key-manager key query -restored false" the key-id for the NVE volume which was deleted remains cached on the node.
 
Cluster::> key-manager key query -restored false
             Node: cluster-01
          Vserver: svm_cluster
      Key Manager: 10.225.89.34:5696
 Key Manager Type: KMIP

Key Tag                               Key Type  Restored
------------------------------------  --------  --------
c9541486-4cc8-11ec-9221-00a0985b948b  VEK       false
    Key ID: 000000000000000002000000000005001b8ca4b682e533dfc5cfc5a77acb28c40000000000000000

Cluster::> vol show -key-id 000000000000000002000000000005001b8ca4b682e533dfc5cfc5a77acb28c40000000000000000
There are no entries matching your query.

Scan to view the article on your device
CUSTOMER EXCLUSIVE CONTENT

Registered NetApp customers get unlimited access to our dynamic Knowledge Base.

New authoritative content is published and updated each day by our team of experts.

Current Customer or Partner?

Sign In for unlimited access

New to NetApp?

Learn more about our award-winning Support