Skip to main content
NetApp Knowledge Base

What happens to information stored in OKM in case of disaster

Last Updated:

Applies to

  • ONTAP 9


Key information is held by the Replicated Database (RDB). When a node in the cluster goes down and looses one or more key ID, the cluster-wide passphrase will be used to restore them by syncing with RDB. In case of a disaster and loss of keys through the entirety of the cluster, onboard key-management information will be restored using the backup data gained when you run security key-manager backup show command.
You should copy onboard key management (OKM) information to a secure location outside the storage system whenever you configure the Onboard Key Manager passphrase. This is explained in Managing NetApp encryption 

Additional Information

In case OKM needs to be restored, please contact NetApp Technical Support and reference this article for further assistance.



NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.