Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
- External SKLM key server reports Unavailable with expired client certificateTue, 16 Jul 2024
- OKM to GCP encryption key migration failsMon, 08 Jul 2024
- Why "security key-manager backup show" output changed automatically without changing passphraseMon, 08 Jul 2024
- External Key Management servers are not responding during configurationFri, 05 Jul 2024
- Giveback vetoed by KeyManager due to slow key import from HyTrust 5.4Thu, 27 Jun 2024
- How to move aggregate encrypted volumeFri, 07 Jun 2024
- Volume encryption conversion keeps restarting back to beginning due to tier going unavailableTue, 04 Jun 2024
- Unable to Configure SSL Certificate Expiry TimeTue, 14 May 2024
- Entrust Key server is slow to return keys after givebackTue, 07 May 2024
- Flexgroup shows partial and mixed state following volume move to decryptFri, 19 Apr 2024
- Failed to start conversion on volume due to encryption in progress errorTue, 16 Apr 2024
- One node reports key server unavailableMon, 15 Apr 2024
- AWS KMS reports state unknown after initial setup due to IO errorMon, 15 Apr 2024
- What does enabling the Onboard Key Manager do?Thu, 28 Mar 2024
- Moving a SVM root volume to a NAE aggregate failsSun, 24 Mar 2024
- Considerations for NSE while migrating to new External Key Manager serversThu, 21 Mar 2024
- KMIP sync-key-cache job endlessly gets rescheduledWed, 20 Mar 2024
- Volume creation fails post switch from node root volume encryption using OKM to KMIPWed, 13 Mar 2024
- CipherTrust not returning all keys during LOCATE on bootMon, 11 Mar 2024
- ANDU gives warning to ensure encryption keys are restored before starting the upgradeWed, 06 Mar 2024
- OKM keys not restored after ONTAP cluster expansionMon, 22 Jul 2024
- Volume create or move fails with "The Onboard Key Manager is already configured"Sun, 21 Jul 2024
- External SKLM key server reports Unavailable with expired client certificateTue, 16 Jul 2024
- ONTAP Upgrade Advisor Plan: Validate encryption keys are in sync for all nodesTue, 16 Jul 2024
- Volume Encryption Conversion or creation fails "Reason: Node failed to allocate encryption resources."Mon, 15 Jul 2024
- How to restore onboard key manager server configuration from the ONTAP boot menuMon, 15 Jul 2024
- How to verify if onboard key manager is configuredMon, 15 Jul 2024
- How to restore external key manager server configuration from the ONTAP boot menuWed, 10 Jul 2024
- Why "security key-manager backup show" output changed automatically without changing passphraseMon, 08 Jul 2024
- OKM to GCP encryption key migration failsMon, 08 Jul 2024
- External Key Management servers are not responding during configurationFri, 05 Jul 2024
- How to recover from a lost passphrase while using onboard encryption and NVE within ONTAPThu, 04 Jul 2024
- Encrypted volumes offline because of manual giveback with override vetoesWed, 03 Jul 2024
- Giveback vetoed by KeyManager due to slow key import from HyTrust 5.4Thu, 27 Jun 2024
- How to remove Onboard Key Management (OKM) in Data ONTAP 9.6 and later when volumes are encryptedThu, 27 Jun 2024
- Giveback during ANDU is vetoed due to External Key ManagerTue, 25 Jun 2024
- Volume encryption conversion taking a long time to completeTue, 25 Jun 2024
- Volume encryption conversion job stuck at 1 percentTue, 25 Jun 2024
- How to renew or recreate an ONTAP self-signed SSL certificate with the NetApp PowerShell ToolkitFri, 21 Jun 2024
- Encryption error observed in SVMDR relationship on DST volumeWed, 19 Jun 2024
Highest rated
(rating)- How to set pre-boot environment variables for NetApp Storage Encryption using KMIP servers
- What is the difference between NSE and NVMe SED drives?
- How to renew or recreate an ONTAP self-signed SSL certificate with the NetApp PowerShell Toolkit
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- After "delete-kmip-config", "key-manager show" displays deleted key server entries
- How do I transition from the onboard key manager to an external key manager, or conversely?
- What data is encrypted with NetApp Volume Encryption (NVE) and NetApp Aggregate Encryption (NAE)?
- Encrypted volumes offline because of manual giveback with override vetoes
- Encryption : Unable to create key on SafeNet Key Server in ONTAP error: Security settings do not allow global key usage
- Error message of "mgmtgwd.certificate.expired" in event log
- How to determine FIPS 140-2 certification number for encrypting drives
- Error "unable to get issuer certificate" depth 2
- NVE: Encrypted volumes go offline after reboot in ONTAP 9.5 and earlier
- Adding new serverCA certificate for External Key Management results in error
- External key servers unavailable on boot when using ifgrps with more than one digit in names as KMIP interfaces
Recently updated
(date updated)- OKM keys not restored after ONTAP cluster expansion
- Volume create or move fails with "The Onboard Key Manager is already configured"
- External SKLM key server reports Unavailable with expired client certificate
- ONTAP Upgrade Advisor Plan: Validate encryption keys are in sync for all nodes
- Volume Encryption Conversion or creation fails "Reason: Node failed to allocate encryption resources."
- How to restore onboard key manager server configuration from the ONTAP boot menu
- How to verify if onboard key manager is configured
- How to restore external key manager server configuration from the ONTAP boot menu
- Why "security key-manager backup show" output changed automatically without changing passphrase
- OKM to GCP encryption key migration fails
- External Key Management servers are not responding during configuration
- How to recover from a lost passphrase while using onboard encryption and NVE within ONTAP
- Encrypted volumes offline because of manual giveback with override vetoes
- Giveback vetoed by KeyManager due to slow key import from HyTrust 5.4
- How to remove Onboard Key Management (OKM) in Data ONTAP 9.6 and later when volumes are encrypted
Recently added
(date created)- External SKLM key server reports Unavailable with expired client certificate
- OKM to GCP encryption key migration fails
- Why "security key-manager backup show" output changed automatically without changing passphrase
- External Key Management servers are not responding during configuration
- Giveback vetoed by KeyManager due to slow key import from HyTrust 5.4
- How to move aggregate encrypted volume
- Volume encryption conversion keeps restarting back to beginning due to tier going unavailable
- Unable to Configure SSL Certificate Expiry Time
- Entrust Key server is slow to return keys after giveback
- Flexgroup shows partial and mixed state following volume move to decrypt
- Failed to start conversion on volume due to encryption in progress error
- One node reports key server unavailable
- AWS KMS reports state unknown after initial setup due to IO error
- What does enabling the Onboard Key Manager do?
- Moving a SVM root volume to a NAE aggregate fails