Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
Highest rated
(rating)- How does NVE and NAE encrypt data?
- OKM in use: ANDU Validation Error: One or more encryption keys status are unavailable
- How to renew or recreate an ONTAP self-signed SSL certificate with the NetApp PowerShell Toolkit
- Installation of CA certificate fails with "Failed to read the X509 from BIO."
- kmip_discover: Key server not responding, still trying during ONTAP upgrade
- Failed to determine if key manager is safe to disable
- How to determine FIPS 140-2 or 140-3 certification number for encrypting drives
- What are the software-based encryption capabilities in ONTAP?
- NVE: Encrypted volumes go offline after reboot in ONTAP 9.5 and earlier
- ONTAP 9 giveback operation was vetoed by keymanager
- How do I realize aggregate deduplication space savings after moving NVE volumes to NAE volumes?
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- Can deleted files be non-disruptively purged from NVE volumes?
- Encrypted volumes offline because of manual giveback with override vetoes
- How to rotate data authentication keys on a FIPS drive or SED
Recently updated
(date updated)- External Key Manager reports SSL PEER VALIDATION error
- VEK key remains cached on node after NVE is deleted and removed from external key server
- OKM keys not restored after ONTAP cluster expansion
- Volume move fails while trying to move to or from an NAE aggregate
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expires
- How to verify if onboard key manager is configured
- Restore onboard key management encryption keys
- OKM: How to recover from a lost Cluster passphrase in ONTAP 9.6 and later when using NAE
- Vulnerability scanner reports issues with ONTAP 9.x self-signed certificates
- How to convert from EKM to OKM without decrypting volumes
- Error when attempting to create encrypted volume using NetApp Volume Encrpytion (NVE)
- NVE volumes offline after an ONTAP reboot with External KMIP SKLM
- Unable to decrypt root volume using volume move
- How to determine if the running ONTAP version supports NetApp Volume Encryption (NVE)
- How to restore onboard key manager server configuration from the ONTAP boot menu
Recently added
(date created)- External Key Manager reports SSL PEER VALIDATION error
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expires
- SVM Migrate will not preserve SVM Root volume if NAE and NAE aggr is present on dest
- Does NetApp support encryption
- EMS message : mgmtgwd.certificate.expiring for client certificate
- Enable encryption (NVE) on Load Sharing (LS) Mirror volumes
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issues
- How to determine what certificates are used by ONTAP
- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025
- ARP snapshot are not working as per the retain interval set to 1
- How to remove then reapply existing SED authentication keys
- Unable to add external key manager using the System Manager when OKM is configured
- What does the ONTAP option "encryption.create.unique.clone.key.disable" do
- Have two keys for each encrypted volume using EKM
- Disable CC-mode
