Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
- Does ONTAP 9 support the ACME protocol for automated certificate management?Wed, 08 Oct 2025
- Does the SAN ARP entropy evaluation period apply to NAS volumes including VM datastores ?Fri, 03 Oct 2025
- TPM Detaching at Boot on AFF C30Mon, 29 Sep 2025
- Onboard keys not found after boot device replacementThu, 18 Sep 2025
- crypto.import.failed errors after re-initializing an ONTAP ClusterFri, 05 Sep 2025
- What is the config step in ONTAP when External Key Manager restore with same CAThu, 14 Aug 2025
- Volume creation fails in GCP as VEKs cannot be created for data SVMMon, 11 Aug 2025
- Newly created aggreagtes are not being encrypted after enabling OKMThu, 31 Jul 2025
- Does the server-CA certificate SwisscomRootCA1 need to be renewed manually?Thu, 31 Jul 2025
- Is it required to install SSL certificates for disk encryption?Tue, 29 Jul 2025
- Unable to modify EKM server-ca certificates due to errorMon, 21 Jul 2025
- External Key Manager reports SSL PEER VALIDATION errorFri, 20 Jun 2025
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expiresFri, 13 Jun 2025
- SVM Migrate will not preserve SVM Root volume if NAE and NAE aggr is present on destThu, 22 May 2025
- Does NetApp support encryptionTue, 20 May 2025
- EMS message : mgmtgwd.certificate.expiring for client certificateThu, 15 May 2025
- Enable encryption (NVE) on Load Sharing (LS) Mirror volumesTue, 06 May 2025
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issuesThu, 24 Apr 2025
- How to determine what certificates are used by ONTAPWed, 23 Apr 2025
- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025Wed, 23 Apr 2025
- How to convert volumes from NetApp Volume Encryption to NetApp Aggregate EncryptionFri, 07 Nov 2025
- How do I gauge the impact of enabling NVE or NAE on an existing system?Fri, 07 Nov 2025
- How do I confirm ONTAP is running a version that prevents the use of encryption?Wed, 05 Nov 2025
- Unable to create encrypted volume because encryption is not supportedWed, 05 Nov 2025
- What is the performance impact of NVE and NAE?Mon, 27 Oct 2025
- How to create a new passphrase then re-key disks for NetApp Storage Encryption (NSE) if the original passphrase is lost - Data ONTAP 8.3.1 or laterFri, 24 Oct 2025
- Digital Certificate Expiring\Expired in Active IQ Unified ManagerFri, 24 Oct 2025
- Vserver Certificate About to Expire MessageFri, 17 Oct 2025
- TPM Detaching at Boot on AFF C30Wed, 15 Oct 2025
- Active IQ reports NetApp Storage Encryption (NSE) disks should be in a locked stateFri, 10 Oct 2025
- Is it possible to assign a specific encryption key to a data volume or drive?Wed, 08 Oct 2025
- Does ONTAP 9 support the ACME protocol for automated certificate management?Wed, 08 Oct 2025
- What is the impact of an expired digital certificate used for a Vserver?Tue, 07 Oct 2025
- Does the SAN ARP entropy evaluation period apply to NAS volumes including VM datastores ?Fri, 03 Oct 2025
- How to install a root-ca certificate for AD LDAPTue, 30 Sep 2025
- How to recover from a lost passphrase while using onboard encryption and NVE within ONTAPMon, 22 Sep 2025
- Onboard keys not found after boot device replacementThu, 18 Sep 2025
- OKM keys not restored after ONTAP cluster expansionMon, 15 Sep 2025
- Error "unable to get issuer certificate" depth 2Mon, 08 Sep 2025
- How to remove external key servers from ONTAPSat, 06 Sep 2025
Highest rated
(rating)- How to set pre-boot environment variables for NetApp Storage Encryption using KMIP servers
- How to remove Onboard Key Management (OKM) in Data ONTAP 9.6 and later when volumes are encrypted
- Permission Denied when retrieving keys due to SKLM certificate change
- ARL controller upgrade failed due to unavailability of volume encryption keys
- Can a paused volume encryption conversion job be cancelled?
- Can deleted files be non-disruptively purged from NVE volumes?
- How do I realize aggregate deduplication space savings after moving NVE volumes to NAE volumes?
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- External key servers unavailable on boot when using ifgrps with more than one digit in names as KMIP interfaces
- The new client certificate public or private keys are different from the existing client certificate
- Nodes will not boot, error: Unable to restore data access on encrypting disk
- Can I do a volume move while an active NVE volume encryption start is running?
- Restore onboard key management encryption keys
- How to renew or recreate an ONTAP self-signed SSL certificate with the NetApp PowerShell Toolkit
- How to determine FIPS 140-2 or 140-3 certification number for encrypting drives
Recently updated
(date updated)- How to convert volumes from NetApp Volume Encryption to NetApp Aggregate Encryption
- How do I gauge the impact of enabling NVE or NAE on an existing system?
- How do I confirm ONTAP is running a version that prevents the use of encryption?
- Unable to create encrypted volume because encryption is not supported
- What is the performance impact of NVE and NAE?
- How to create a new passphrase then re-key disks for NetApp Storage Encryption (NSE) if the original passphrase is lost - Data ONTAP 8.3.1 or later
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- Vserver Certificate About to Expire Message
- TPM Detaching at Boot on AFF C30
- Active IQ reports NetApp Storage Encryption (NSE) disks should be in a locked state
- Is it possible to assign a specific encryption key to a data volume or drive?
- Does ONTAP 9 support the ACME protocol for automated certificate management?
- What is the impact of an expired digital certificate used for a Vserver?
- Does the SAN ARP entropy evaluation period apply to NAS volumes including VM datastores ?
- How to install a root-ca certificate for AD LDAP
Recently added
(date created)- Does ONTAP 9 support the ACME protocol for automated certificate management?
- Does the SAN ARP entropy evaluation period apply to NAS volumes including VM datastores ?
- TPM Detaching at Boot on AFF C30
- Onboard keys not found after boot device replacement
- crypto.import.failed errors after re-initializing an ONTAP Cluster
- What is the config step in ONTAP when External Key Manager restore with same CA
- Volume creation fails in GCP as VEKs cannot be created for data SVM
- Newly created aggreagtes are not being encrypted after enabling OKM
- Does the server-CA certificate SwisscomRootCA1 need to be renewed manually?
- Is it required to install SSL certificates for disk encryption?
- Unable to modify EKM server-ca certificates due to error
- External Key Manager reports SSL PEER VALIDATION error
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expires
- SVM Migrate will not preserve SVM Root volume if NAE and NAE aggr is present on dest
- Does NetApp support encryption