Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
- External Key Manager reports SSL PEER VALIDATION errorFri, 20 Jun 2025
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expiresFri, 13 Jun 2025
- SVM Migrate will not preserve SVM Root volume if NAE and NAE aggr is present on destThu, 22 May 2025
- Does NetApp support encryptionTue, 20 May 2025
- EMS message : mgmtgwd.certificate.expiring for client certificateThu, 15 May 2025
- Enable encryption (NVE) on Load Sharing (LS) Mirror volumesTue, 06 May 2025
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issuesThu, 24 Apr 2025
- How to determine what certificates are used by ONTAPWed, 23 Apr 2025
- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025Wed, 23 Apr 2025
- ARP snapshot are not working as per the retain interval set to 1Thu, 17 Apr 2025
- How to remove then reapply existing SED authentication keysMon, 07 Apr 2025
- Unable to add external key manager using the System Manager when OKM is configuredMon, 07 Apr 2025
- What does the ONTAP option "encryption.create.unique.clone.key.disable" doTue, 01 Apr 2025
- Have two keys for each encrypted volume using EKMFri, 28 Mar 2025
- Disable CC-modeWed, 19 Mar 2025
- Key manager port changed and no longer responds to ONTAPFri, 28 Feb 2025
- OKM sync fails after motherboard replacement due to wrong backup data option 10Thu, 27 Feb 2025
- crypto.import.failed events observed during boot of clusterMon, 24 Feb 2025
- How do I confirm cluster scope encryption is enabled by default?Fri, 21 Feb 2025
- Sporadic connection lost to external key managerThu, 06 Feb 2025
- How to recover from a lost passphrase while using onboard encryption and NVE within ONTAPThu, 03 Jul 2025
- Digital Certificate Expiring\Expired in Active IQ Unified ManagerThu, 26 Jun 2025
- How to renew certificates for HyTrust External Key Manager when keys are presentMon, 23 Jun 2025
- External Key Manager reports SSL PEER VALIDATION errorFri, 20 Jun 2025
- VEK key remains cached on node after NVE is deleted and removed from external key serverMon, 16 Jun 2025
- OKM keys not restored after ONTAP cluster expansionMon, 16 Jun 2025
- Volume move fails while trying to move to or from an NAE aggregateSun, 15 Jun 2025
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expiresFri, 13 Jun 2025
- How to verify if onboard key manager is configuredThu, 12 Jun 2025
- Restore onboard key management encryption keysThu, 12 Jun 2025
- OKM: How to recover from a lost Cluster passphrase in ONTAP 9.6 and later when using NAEThu, 12 Jun 2025
- Vulnerability scanner reports issues with ONTAP 9.x self-signed certificatesWed, 11 Jun 2025
- How to convert from EKM to OKM without decrypting volumesTue, 10 Jun 2025
- Error when attempting to create encrypted volume using NetApp Volume Encrpytion (NVE)Tue, 10 Jun 2025
- NVE volumes offline after an ONTAP reboot with External KMIP SKLMFri, 06 Jun 2025
- Unable to decrypt root volume using volume moveWed, 04 Jun 2025
- How to determine if the running ONTAP version supports NetApp Volume Encryption (NVE)Mon, 02 Jun 2025
- How to restore onboard key manager server configuration from the ONTAP boot menuFri, 30 May 2025
- NSE: How to convert an external key management (KMIP) server to Onboard Key Manager (OKM) in ONTAP 9.1 or laterThu, 29 May 2025
- Are ONTAP storage efficiencies maintained when software-based encryption (NVE or NAE) is in use?Tue, 27 May 2025
Highest rated
(rating)- What is the difference between FIPS and SED drives?
- How to set pre-boot environment variables for NetApp Storage Encryption using KMIP servers
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- Restore onboard key management encryption keys
- ONTAP 9 giveback operation was vetoed by keymanager
- Encrypted volumes offline because of manual giveback with override vetoes
- Can deleted files be non-disruptively purged from NVE volumes?
- How do I realize aggregate deduplication space savings after moving NVE volumes to NAE volumes?
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- Error "unable to get issuer certificate" depth 2
- The new client certificate public or private keys are different from the existing client certificate
- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025
- External key servers unavailable on boot when using ifgrps with more than one digit in names as KMIP interfaces
- Nodes will not boot, error: Unable to restore data access on encrypting disk
- How do i know whether my data is encrypted at rest?
Recently updated
(date updated)- How to recover from a lost passphrase while using onboard encryption and NVE within ONTAP
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- How to renew certificates for HyTrust External Key Manager when keys are present
- External Key Manager reports SSL PEER VALIDATION error
- VEK key remains cached on node after NVE is deleted and removed from external key server
- OKM keys not restored after ONTAP cluster expansion
- Volume move fails while trying to move to or from an NAE aggregate
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expires
- How to verify if onboard key manager is configured
- Restore onboard key management encryption keys
- OKM: How to recover from a lost Cluster passphrase in ONTAP 9.6 and later when using NAE
- Vulnerability scanner reports issues with ONTAP 9.x self-signed certificates
- How to convert from EKM to OKM without decrypting volumes
- Error when attempting to create encrypted volume using NetApp Volume Encrpytion (NVE)
- NVE volumes offline after an ONTAP reboot with External KMIP SKLM
Recently added
(date created)- External Key Manager reports SSL PEER VALIDATION error
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expires
- SVM Migrate will not preserve SVM Root volume if NAE and NAE aggr is present on dest
- Does NetApp support encryption
- EMS message : mgmtgwd.certificate.expiring for client certificate
- Enable encryption (NVE) on Load Sharing (LS) Mirror volumes
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issues
- How to determine what certificates are used by ONTAP
- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025
- ARP snapshot are not working as per the retain interval set to 1
- How to remove then reapply existing SED authentication keys
- Unable to add external key manager using the System Manager when OKM is configured
- What does the ONTAP option "encryption.create.unique.clone.key.disable" do
- Have two keys for each encrypted volume using EKM
- Disable CC-mode