Can you delete a SnapLock Audit Log volume prior to its SnapLock expiry date?
Applies to
- ONTAP 9.x
- SnapLock Enterprise and Compliance
- Amazon FSx for NetApp
Answer
- No, the SnapLock Audit Log is required to log any ONTAP Operations done to Compliance Data.
- The minimum retention period for a SnapLock audit log volume is six months. Until this retention period expires you cannot delete the SnapLock audit log volume, the storage virtual machine (SVM), or the file system that's associated with the SVM, even if the volume is created in SnapLock Enterprise mode.
- The privilege delete feature is permanently disabled by default for SnapLock audit log volumes.
permanently-disabled
is the terminal state. It cannot be enabled after it is set the state topermanently-disabled.
Additional Information
If a file is deleted using privileged delete and its retention period is longer than the retention period of the volume, then the audit log volume inherits the file's retention period. For example, if a file that has a retention period of 10 months is deleted using privileged delete and the retention period of the audit log volume is six months, the retention period of the audit log volume is extended to 10 months.