Onboard sync fails on newly added nodes

Last updated

Jul 15, 2025
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 921

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: core

Last Updated:: 7/15/2025, 1:17:19 PM

Applies to

ONTAP 9.7
Netapp Aggregate Encryption (NAE)
Onboard Key Manager (OKM)

Issue

After adding new nodes to the cluster and attempting to sync the keys from the onboard key manager, the system generates the below error:

::> security key-manager onboard sync

Enter the cluster-wide passphrase for onboard key management:

All offline encrypted volumes will be brought online and the corresponding volume encryption keys (VEKs) will be

restored automatically within 10 minutes. If any offline encrypted volumes are not brought online automatically, they can be

brought online manually using the"volume online -vserver -volume" command.

Error: command failed: Onboard key management has successfully synced on the local node "node-01". The following nodes in the cluster are not reachable or failed to sync: node-03, node-04. Use the "cluster show" command to check a node's health status and then run the "security key-manager onboard sync" command again.