Skip to main content
NetApp Knowledge Base

CONTAP-647322: Unable to recover using PSID when all disks are locked

  1. Last updated
  2. Save as PDF
Views:
8
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
CORE
Last Updated:

Issue

  • All NetApp NetApp Storage Encryption (NSE) drives are in a "permanently locked out" state because they were attempted to get unlocked in a boot loop with wrong NSE authentication key (NSE-AK) for multiple hours.
  • The boot process logs this error when NSE drives are permanently locked out:
    Feb 23 14:13:28 [MyCluster-01:disk.init.failure.error:error]: Drive 0n.0 failed initialization due to error 11, sense code(7 20 2 86).
    Feb 23 14:13:28 [MyCluster-01:disk.encryptAccessErr:error]: Unable to restore data access on encrypting disk 0n.0; status TCG authority locked out (0x11).


  • Permanent locked out NSE drives cannot even unlocked anymore with their correct key but require anitization to allow to use them again freshly formatted using a new NSE-AK
  • Trying to revert locked disks to factory default using the "revert-to-original" command fails with (not required for non FIPS drives):
    *> disk encrypt revert_original 4A6E4251EFD8CC556C6E224D962B1550 0n.0
    ERROR: The system is not configured to run this command

  • All "disk encrypt" commands in maintenance mode like "disk encrypt sanitize -all" fail with the same error and the disks remain unusable

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.