Unable to modify encryption key disk.encryptCmdFailed

Last updated

Jun 3, 2025
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 22

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: CORE

Last Updated:: 6/3/2025, 8:55:33 AM

Applies to

ONTAP 9
NetApp Storage Encryption (NSE)
External key manager (EKM)
Onboard key manager (OKM)

Issue

New nodes (Cluster1-03, Cluster1-04) were added to the cluster.
When trying to modify the encryption key (Onboard Key Manager) on disks, ONTAP returns an error:

Cluster1::> storage encryption disk modify -disk 2.* -data-key-id 000000000000000001000000000001001x1x11111x111111x111x11x111111x0000000000000000

24 entries were acted on.

Info: Starting modify on 12 disks on node Cluster1-03.

View the status of the operation by using the "storage encryption disk show-status" command.

Starting modify on 12 disks on node Cluster1-04.

View the status of the operation by using the "storage encryption disk show-status" command.

Cluster1::*> storage encryption disk show-status

        FIPS    Latest   Start               Execution Disks  Disks      Disks

Node    Support Request  Timestamp          Time (sec)  Begun   Done Successful

------- ------- -------- ------------------ ---------- ------ ------ ----------

Cluster1-01

        false   unknown  -                           -      - -          -

Cluster1-02

        false   unknown  -                           -      -      -          -

Cluster1-03

        false modify   1/1/2025 10:15:12          3     12     12          0

Cluster1-04

        false   modify   1/1/2025 10:15:12          3  12     12          0

4 entries were displayed.

EMS.log

disk.encryptCmdFailed: Encrypting disk 0n.20 failed disk encrypt modify command with error status Could not authenticate with disk. (0xe).