Unable to modify encryption key disk.encryptCmdFailed

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 105

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: CORE

Last Updated:

Applies to

ONTAP 9
NetApp Storage Encryption (NSE)
External key manager (EKM)
Onboard key manager (OKM)

Issue

Two new systems have been tested in a two node cluster as Test-01 and Test-02
After testing they are added into existing production cluster as Production-03, Production-04.
When trying to modify the encryption key (Onboard Key Manager) on disks, ONTAP returns an error:

Production::> storage encryption disk modify -disk 2.* -data-key-id 000000000000000001000000000001001x1x11111x111111x111x11x111111x0000000000000000

24 entries were acted on.

Info: Starting modify on 12 disks on node Production-03.

View the status of the operation by using the "storage encryption disk show-status" command.

Starting modify on 12 disks on node Production-04.

View the status of the operation by using the "storage encryption disk show-status" command.

Production::*> storage encryption disk show-status

        FIPS    Latest   Start               Execution Disks  Disks      Disks

Node    Support Request  Timestamp          Time (sec)  Begun   Done Successful

------- ------- -------- ------------------ ---------- ------ ------ ----------

Production-01

        false   unknown  -                           -      - -          -

Production-02

        false   unknown  -                           -      -      -          -

Production-03

        false modify   1/1/2025 10:15:12          3     12     12          0

Production-04

        false   modify   1/1/2025 10:15:12          3  12     12          0

4 entries were displayed.

EMS.log

disk.encryptCmdFailed: Encrypting disk 0n.20 failed disk encrypt modify command with error status Could not authenticate with disk. (0xe).