Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
Highest rated
(rating)- How to determine if the running ONTAP version supports NetApp Volume Encryption (NVE)
- How to set pre-boot environment variables for NetApp Storage Encryption using KMIP servers
- What data is encrypted with NetApp Volume Encryption (NVE) and NetApp Aggregate Encryption (NAE)?
- How to remove Onboard Key Management (OKM) in Data ONTAP 9.6 and later when volumes are encrypted
- NVE: Encrypted volumes go offline after reboot in ONTAP 9.5 and earlier
- What are the software-based encryption capabilities in ONTAP?
- How to rotate encryption keys for NetApp Storage Encryption (NSE)
- How does NVE and NAE encrypt data?
- Restore onboard key management encryption keys
- The new client certificate public or private keys are different from the existing client certificate
- How do I realize aggregate deduplication space savings after moving NVE volumes to NAE volumes?
- External key servers unavailable on boot when using ifgrps with more than one digit in names as KMIP interfaces
- Nodes will not boot, error: Unable to restore data access on encrypting disk
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
- How to determine FIPS 140-2 or 140-3 certification number for encrypting drives
Recently updated
(date updated)- Error message of "mgmtgwd.certificate.expiring" in event log
- What is the difference between FIPS and SED drives?
- Key restore with EKM fails with No Cryptographic Object found
- How to renew an ONTAP self-signed SSL certificate via command line
- What is the correct setting for bootarg.storageencryption.support for NVMe SED drives?
- Key manager port changed and no longer responds to ONTAP
- Error when sanitizing Self-Encrypting Drive (SED) or FIPS NSE drives
- Onboard keymanager sync fails after motherboard replacement
- OKM sync fails after motherboard replacement due to wrong backup data option 10
- crypto.import.failed events observed during boot of cluster
- How to install a root-ca certificate for AD LDAP
- How do I confirm cluster scope encryption is enabled by default?
- What is the impact of an expired digital certificate used for a Vserver?
- OKM in use: ANDU Validation Error: One or more encryption keys status are unavailable
- Sporadic connection lost to external key manager
Recently added
(date created)- Key manager port changed and no longer responds to ONTAP
- OKM sync fails after motherboard replacement due to wrong backup data option 10
- crypto.import.failed events observed during boot of cluster
- How do I confirm cluster scope encryption is enabled by default?
- Sporadic connection lost to external key manager
- Cannot assign authentication keys to disks after migration from OKM to EKM
- Encryption Conversion Start Failed to Get Encryption Type
- Unable to complete volume move to decrypt due to disconnected KMIP server
- Failed to generate cluster key encryption key in kernel
- Is the reason that version -v displays 1Ono-DARE and NVE is not supported because the software image was installed with NODAR
- External key restore fails with error "Cipher engine is not initialized"
- CVO cluster upgrade is failing
- Volume encryption conversion paused due to error that capacity tier is unavailable
- Enabling drive encryption failed due to drive miss
- SnapMirror destination volume not automatically encrypted after encrypting source