SFO Giveback Failure Due to Key Manager Connectivity After NVDIMM Replacement

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 30

Visibility:: Public

Votes:: 0

Category:: fas-systems

Specialty:: hw

Last Updated:

Applies to

ONTAP 9
FAS9000
External Key Manager environments

Issue

After NVDIMM replacement, the cluster completed CFO aggregate giveback successfully. However, SFO aggregate giveback failed due to key manager errors.

Log output

cluster::*> security key-manager show -status

Node Port Registered Key Manager Status

------------- ----- ----------------------- ---------------

node-03 5696 10.45.XX.XX not-responding

node-03 5696 10.47.XX.XX not-responding

node-04 5696 10.45.XX.XX available

node-04 5696 10.47.XX.XX available

cluster::*> event log show -node * -event gb*

Time Node Severity Event

------------------- ---------------- ------------- ---------------------------

11/19/2025 15:32:55 node-04      ERROR         gb.sfo.veto.kmgr.keysmissing: Giveback of aggregate "node03_ssd_1" failed due to the unavailability of the volume encryption keys for the encrypted volumes of the aggregate on partner node "node-03".

SFO giveback failed because keys were not restored during boot due to key manager unavailability.