Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
- Unable to complete volume move to decrypt due to disconnected KMIP serverFri, 24 Jan 2025
- Failed to generate cluster key encryption key in kernelWed, 22 Jan 2025
- Is the reason that version -v displays 1Ono-DARE and NVE is not supported because the software image was installed with NODARThu, 09 Jan 2025
- External key restore fails with error "Cipher engine is not initialized"Thu, 26 Dec 2024
- CVO cluster upgrade is failingFri, 06 Dec 2024
- Volume encryption conversion paused due to error that capacity tier is unavailableFri, 06 Dec 2024
- Enabling drive encryption failed due to drive missFri, 06 Dec 2024
- SnapMirror destination volume not automatically encrypted after encrypting sourceMon, 02 Dec 2024
- Decommissioning or Repurposing node with Onboard Key Management Disk enabledMon, 02 Dec 2024
- Is enabling encryption on an existing volume with user data disruptive?Thu, 14 Nov 2024
- ANDU validation fails with KMIP One or more encryption keys are unavailableWed, 06 Nov 2024
- Is Onboard Key Management Multi-Tenant?Wed, 23 Oct 2024
- New external SKLM key server is reporting as unavailableThu, 17 Oct 2024
- Attempting to encrypt a disk with encryption disk modify fails with error 0xeWed, 16 Oct 2024
- The Onboard Key Manager operation fails after node's Motherboard or bootdevice replacementThu, 10 Oct 2024
- MCC-FC volumes offline after switchoverFri, 04 Oct 2024
- Is there a function to monitor whether NVE encryption feature is operating?Fri, 04 Oct 2024
- What is the impact of not deleting old certificate after renewing certificate?Tue, 01 Oct 2024
- IO Error when connecting to Thales external key managerMon, 30 Sep 2024
- Volume conversion with EKM fails due to key not found errorMon, 16 Sep 2024
- Unable to complete volume move to decrypt due to disconnected KMIP serverFri, 24 Jan 2025
- Failed to generate cluster key encryption key in kernelThu, 23 Jan 2025
- Error when sanitizing Self-Encrypting Drive (SED) or FIPS NSE drivesTue, 21 Jan 2025
- External Key Manager in unknown state with SSL peer validation errorsMon, 20 Jan 2025
- Volume move fails while trying to move to or from an NAE aggregateWed, 15 Jan 2025
- Is the reason that version -v displays 1Ono-DARE and NVE is not supported because the software image was installed with NODARThu, 09 Jan 2025
- ONTAP AutoSupport messages fail using HTTPS: SSL certificate problemThu, 09 Jan 2025
- What is the Certificate Truststore in ONTAP?Thu, 09 Jan 2025
- What will happen when my Autosupport Certificate in ONTAP expires?Thu, 09 Jan 2025
- What are some common uses for vserver Self-Signed Certificates?Wed, 08 Jan 2025
- Unable to delete the preinstalled 'server-ca' certificate from the TruststoreWed, 08 Jan 2025
- CVO cluster upgrade is failingTue, 07 Jan 2025
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startupTue, 31 Dec 2024
- External key restore fails with error "Cipher engine is not initialized"Thu, 26 Dec 2024
- Does NetApp Volume Encryption have to be enabled on both source and destination volumes of a SnapMirror relationship?Fri, 13 Dec 2024
- Unable to enable SSL/TLS Certificate Validation on FabricPool aggregate in ONTAP 9.7 and laterThu, 12 Dec 2024
- Enabling drive encryption failed due to drive missWed, 11 Dec 2024
- Volume encryption conversion paused due to error that capacity tier is unavailableFri, 06 Dec 2024
- Enabling NAE fails because of non-encrypted volumes in the aggregateThu, 05 Dec 2024
- SnapMirror destination volume not automatically encrypted after encrypting sourceMon, 02 Dec 2024
Highest rated
(rating)- How to determine if the running ONTAP version supports NetApp Volume Encryption (NVE)
- How to rotate encryption keys for NetApp Storage Encryption (NSE)
- kmip_discover: Key server not responding, still trying during ONTAP upgrade
- Failed to determine if key manager is safe to disable
- How to renew or recreate an ONTAP self-signed SSL certificate with the NetApp PowerShell Toolkit
- What are the software-based encryption capabilities in ONTAP?
- How does NVE and NAE encrypt data?
- How to determine FIPS 140-2 or 140-3 certification number for encrypting drives
- NVE: Encrypted volumes go offline after reboot in ONTAP 9.5 and earlier
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- How do I transition from the onboard key manager to an external key manager, or conversely?
- Can I instantaneously delete an NVE volume encryption key without deleting the volume?
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- Can I do a volume move while an active NVE volume encryption start is running?
- Can deleted files be non-disruptively purged from NVE volumes?
Recently updated
(date updated)- Unable to complete volume move to decrypt due to disconnected KMIP server
- Failed to generate cluster key encryption key in kernel
- Error when sanitizing Self-Encrypting Drive (SED) or FIPS NSE drives
- External Key Manager in unknown state with SSL peer validation errors
- Volume move fails while trying to move to or from an NAE aggregate
- Is the reason that version -v displays 1Ono-DARE and NVE is not supported because the software image was installed with NODAR
- ONTAP AutoSupport messages fail using HTTPS: SSL certificate problem
- What is the Certificate Truststore in ONTAP?
- What will happen when my Autosupport Certificate in ONTAP expires?
- What are some common uses for vserver Self-Signed Certificates?
- Unable to delete the preinstalled 'server-ca' certificate from the Truststore
- CVO cluster upgrade is failing
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- External key restore fails with error "Cipher engine is not initialized"
- Does NetApp Volume Encryption have to be enabled on both source and destination volumes of a SnapMirror relationship?
Recently added
(date created)- Unable to complete volume move to decrypt due to disconnected KMIP server
- Failed to generate cluster key encryption key in kernel
- Is the reason that version -v displays 1Ono-DARE and NVE is not supported because the software image was installed with NODAR
- External key restore fails with error "Cipher engine is not initialized"
- CVO cluster upgrade is failing
- Volume encryption conversion paused due to error that capacity tier is unavailable
- Enabling drive encryption failed due to drive miss
- SnapMirror destination volume not automatically encrypted after encrypting source
- Decommissioning or Repurposing node with Onboard Key Management Disk enabled
- Is enabling encryption on an existing volume with user data disruptive?
- ANDU validation fails with KMIP One or more encryption keys are unavailable
- Is Onboard Key Management Multi-Tenant?
- New external SKLM key server is reporting as unavailable
- Attempting to encrypt a disk with encryption disk modify fails with error 0xe
- The Onboard Key Manager operation fails after node's Motherboard or bootdevice replacement