Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issuesThu, 24 Apr 2025
- How to remove then reapply existing SED authentication keysMon, 07 Apr 2025
- Unable to add external key manager using the System Manager when OKM is configuredMon, 07 Apr 2025
- What does the ONTAP option "encryption.create.unique.clone.key.disable" doTue, 01 Apr 2025
- Have two keys for each encrypted volume using EKMFri, 28 Mar 2025
- Disable CC-modeWed, 19 Mar 2025
- Key manager port changed and no longer responds to ONTAPFri, 28 Feb 2025
- OKM sync fails after motherboard replacement due to wrong backup data option 10Thu, 27 Feb 2025
- crypto.import.failed events observed during boot of clusterMon, 24 Feb 2025
- How do I confirm cluster scope encryption is enabled by default?Fri, 21 Feb 2025
- Sporadic connection lost to external key managerThu, 06 Feb 2025
- Cannot assign authentication keys to disks after migration from OKM to EKMThu, 06 Feb 2025
- Encryption Conversion Start Failed to Get Encryption TypeThu, 30 Jan 2025
- Unable to complete volume move to decrypt due to disconnected KMIP serverFri, 24 Jan 2025
- Failed to generate cluster key encryption key in kernelWed, 22 Jan 2025
- Is the reason that version -v displays 1Ono-DARE and NVE is not supported because the software image was installed with NODARThu, 09 Jan 2025
- External key restore fails with error "Cipher engine is not initialized"Thu, 26 Dec 2024
- CVO cluster upgrade is failingFri, 06 Dec 2024
- Volume encryption conversion paused due to error that capacity tier is unavailableFri, 06 Dec 2024
- Enabling drive encryption failed due to drive missFri, 06 Dec 2024
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issuesThu, 24 Apr 2025
- Which interface is external key manager communication using during boot?Tue, 22 Apr 2025
- Unable to complete volume move to decrypt due to disconnected KMIP serverMon, 21 Apr 2025
- Failed to generate cluster key encryption key in kernelThu, 17 Apr 2025
- What is the impact of an expired digital certificate used for a Vserver?Mon, 14 Apr 2025
- ONTAP AutoSupport using HTTPS fails validation when the Certificate is removedFri, 11 Apr 2025
- Nodes will not boot, error: Unable to restore data access on encrypting diskThu, 10 Apr 2025
- How to capture the PSID from the printed label of an encrypting driveThu, 10 Apr 2025
- ONTAP AutoSupport messages fail using HTTPS: SSL certificate problemThu, 10 Apr 2025
- How to switch from NVE or NAE to NSEWed, 09 Apr 2025
- How to rotate encryption keys for NetApp Storage Encryption (NSE)Tue, 08 Apr 2025
- How to remove then reapply existing SED authentication keysMon, 07 Apr 2025
- Unable to add external key manager using the System Manager when OKM is configuredMon, 07 Apr 2025
- Restore onboard key management encryption keysTue, 01 Apr 2025
- Digital Certificate Expiring\Expired in Active IQ Unified ManagerTue, 01 Apr 2025
- What does the ONTAP option "encryption.create.unique.clone.key.disable" doTue, 01 Apr 2025
- How to convert plain text volume to use NAEMon, 31 Mar 2025
- Have two keys for each encrypted volume using EKMFri, 28 Mar 2025
- Disable CC-modeWed, 19 Mar 2025
- Unable to set FIPS key ID for SEDsWed, 19 Mar 2025
Highest rated
(rating)- Can I instantaneously delete an NVE volume encryption key without deleting the volume?
- What data is encrypted with NetApp Volume Encryption (NVE) and NetApp Aggregate Encryption (NAE)?
- How to remove Onboard Key Management (OKM) in Data ONTAP 9.6 and later when volumes are encrypted
- How to rotate encryption keys for NetApp Storage Encryption (NSE)
- Can deleted files be non-disruptively purged from NVE volumes?
- How do I realize aggregate deduplication space savings after moving NVE volumes to NAE volumes?
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- Can I do a volume move while an active NVE volume encryption start is running?
- Restore onboard key management encryption keys
- The new client certificate public or private keys are different from the existing client certificate
- Nodes will not boot, error: Unable to restore data access on encrypting disk
- Error: Encryption is not enabled on the destination cluster
- Giveback during ANDU is vetoed due to External Key Manager
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- NVE: Encrypted volumes go offline after reboot in ONTAP 9.5 and earlier
Recently updated
(date updated)- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issues
- Which interface is external key manager communication using during boot?
- Unable to complete volume move to decrypt due to disconnected KMIP server
- Failed to generate cluster key encryption key in kernel
- What is the impact of an expired digital certificate used for a Vserver?
- ONTAP AutoSupport using HTTPS fails validation when the Certificate is removed
- Nodes will not boot, error: Unable to restore data access on encrypting disk
- How to capture the PSID from the printed label of an encrypting drive
- ONTAP AutoSupport messages fail using HTTPS: SSL certificate problem
- How to switch from NVE or NAE to NSE
- How to rotate encryption keys for NetApp Storage Encryption (NSE)
- How to remove then reapply existing SED authentication keys
- Unable to add external key manager using the System Manager when OKM is configured
- Restore onboard key management encryption keys
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
Recently added
(date created)- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issues
- How to remove then reapply existing SED authentication keys
- Unable to add external key manager using the System Manager when OKM is configured
- What does the ONTAP option "encryption.create.unique.clone.key.disable" do
- Have two keys for each encrypted volume using EKM
- Disable CC-mode
- Key manager port changed and no longer responds to ONTAP
- OKM sync fails after motherboard replacement due to wrong backup data option 10
- crypto.import.failed events observed during boot of cluster
- How do I confirm cluster scope encryption is enabled by default?
- Sporadic connection lost to external key manager
- Cannot assign authentication keys to disks after migration from OKM to EKM
- Encryption Conversion Start Failed to Get Encryption Type
- Unable to complete volume move to decrypt due to disconnected KMIP server
- Failed to generate cluster key encryption key in kernel