Skip to main content
NetApp Knowledge Base

The AKV Key Version Has Expired Error in ONTAP with Azure Key Vault

  1. Last updated
  2. Save as PDF
Views:
34
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
cloud
Last Updated:

Applies to

  • ONTAP 9
  • Cloud Volumes ONTAP (CVO)
  • Microsoft Azure
  • Azure Key Vault (AKV)

Issue

  • Key expired errors associated with AKV in EMS logs as below: 
    3/24/2026 03:26:35  node1     ERROR      ekmip.akv.keyExpired: The AKV key version has expired. KeyID: "https://brazil-azure-kv.vault.azure.net/keys/brazil-azure-key/1232af795dfd4bcbae457ed597e6f7f8". AKV configuration details, SVM: "svm1", configuration name: "default", AKV name: "https://brazil-azure-kv.vault.azure.net/".
  • Volume creation fails with:Error: command failed: [Job xxxxx] Job failed: Failed to create the volume on node "node-01". Reason: Key management is not configured for the admin Vserver or for data Vserver "svm1". Use the "security key-manager external enable -vserver" command to configure external key management or "security key-manager onboard enable -vserver" command to configure the Onboard Key Manager for the appropriate Vserver.
  • Existing encrypted volumes remain accessible, but new encrypted volume creation fails.

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.