Exciting new changes are coming to the Knowledge Base site soon!
Starting April 4, 2023, you will notice Support-Specific categorization and improvements to the search filters on the site. In May, we will be launching a new and enhanced Site UI and Navigation. To know more, read our Knowledge Article.

Home
Advice and Troubleshooting
Data Storage Software
ONTAP OS
Where are NVE and NAE encryption keys stored?

Where are NVE and NAE encryption keys stored?

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 405

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: core

Last Updated:

Applies to

ONTAP 9
NetApp Volume Encryption (NVE)
NetApp Aggregate Encryption (NAE)

Answer

With the onboard key manager, data volume encryption keys and aggregate keys are stored in the WAFL metadata, which is not accessible by the user, and the volume location database (VLDB).
With an external key manager, data volume encryption keys and aggregate keys are stored directly on the KMIP server.

Additional Information

FAQ: NetApp Volume Encryption and NetApp Aggregate Encryption