Cluster with SED drives was wiped without unlocking the drives in advance
Applies to
- ONTAP 9
- NetApp Storage Encryption (NSE)
- Self Encrypting Drives (SED)
- Full Disk Encryption (FDE)
- NetApp Onboard Key Manager (OKM)
- KMIP
Issue
- After upgrading to an ONTAP version including change1412340,
event log show
periodically issuescallhome.nse.ak.check.failed:EMERGENCY
events:
[cluster01: statd: callhome.nse.ak.check.failed:EMERGENCY]: Call home for Authentication Key Check, disk "disk". Failed
- Neither OKM nor external KMIP is configured:
cluster01::> security key-manager onboard show-backup
Error: show failed: The Onboard Key Manager is not configured for the admin Vserver. Use the "security key-manager onboard enable" command to configure the Onboard Key Manager.
cluster01::> security key-manager external show
No key management servers registered.
- SED drives have a data-key-id other than 0x0 assigned:
cluster01::> storage encryption disk show -fields data-key-id -disk 1.0.1
disk data-key-id
----- ----------------------------------------------------------------
1.0.1 000000000000000002000000000001234ABC46D7EF8901AB1234C56789123456