Skip to main content
NetApp Knowledge Base

CONTAP-550742: Unable to encrypt volumes using Azure Key Vault external key manager if token is greater than 4096 characters.

  1. Last updated
  2. Save as PDF

 

Views:
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

Issue

  • Customers using Customer-Manager Keys with an Azure Key Vault (AKV) external key manager fail the check command if the token is greater than 4096 characters.
  • The 'security key-manager external azure check' command fails with:
    • Category: service_reachability
    • Status: FAILED
    • Details: Azure Key Vault (AKV) operation "GET" failed.
    • Cryptsoft error: FAILED.
    • HTTP payload: {"token_type
                             Issue (privilege: diag) "security key-manager
                             external <azure|aws|gcp|ikp> invoke" for more
                             information.
  • The 'azure check' functionality is needed when using AKV to encrypt a volume. Failing the check command leads to the encryption operation failing.

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.