When is Onboard Key Manager (OKM)/NetApp Volume Encryption (NVE) restore work required?
Applies to
- Onboard Key Manager (OKM)
- NetApp Volume Encryption (NVE)
- ONTAP 9.0 and later
Answer
- Onboard Key Manager (OKM) has a backup feature that will allow for recovery in disaster scenarios.
- In the event of a head swap, cfcard replacement or cfcard corruption, manual recovery of the keys has to be performed.
- If there is no passphrase or securitykey-manager onboard show-backup data at that time, data access to the encrypted drive/volume will not be possible.
- There is no case of using OKM passphrase or show-backup data other than the above restore operation.
Additional Information
additionalInformation_text