Encryption KBs
Encryption KBs
Featured
NetApp Encryption Overview
NetApp offers both software and hardware based encryption technologies
NetApp offers both software and hardware based encryption technologies
FAQ: NVE and NAE
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
Frequently asked questions about NetApp Volume and NetApp Aggregate Encryption
What is NetApp Storage Encryption
Full disk encryption that protects data at rest with no operational impact
Full disk encryption that protects data at rest with no operational impact
Other Resources
Highest rated
(rating)- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025
- NVE: Encrypted volumes go offline after reboot in ONTAP 9.5 and earlier
- Error: Encryption is not enabled on the destination cluster
- How to rotate data authentication keys on a FIPS drive or SED
- What data is encrypted with NetApp Volume Encryption (NVE) and NetApp Aggregate Encryption (NAE)?
- Restore onboard key management encryption keys
- ONTAP 9 giveback operation was vetoed by keymanager
- Can deleted files be non-disruptively purged from NVE volumes?
- How do I realize aggregate deduplication space savings after moving NVE volumes to NAE volumes?
- Nodes will not boot, error: Unable to restore data access on encrypting disk
- Encrypted volumes offline because of manual giveback with override vetoes
- The new client certificate public or private keys are different from the existing client certificate
- Can I do a volume move while an active NVE volume encryption start is running?
- Digital Certificate Expiring\Expired in Active IQ Unified Manager
- When Onboard Key Manager (OKM) Common Criteria Mode is enabled a cluster-wide passphrase is required at system startup
Recently updated
(date updated)- What is the config step in ONTAP when External Key Manager restore with same CA
- KMIP server not responding while node boots due to network connectivity issues
- Volume creation fails in GCP as VEKs cannot be created for data SVM
- Creating log forward fails with TCP encrypted protocol
- Onboard keymanager sync fails after motherboard replacement
- NVE volumes offline after TPM chip motherboard replacement when using OKM
- How do i know whether my data is encrypted at rest?
- Newly created aggreagtes are not being encrypted after enabling OKM
- Does the server-CA certificate SwisscomRootCA1 need to be renewed manually?
- Is it required to install SSL certificates for disk encryption?
- What is the impact of an expired digital certificate used for a Vserver?
- Unable to install CA certificate. ERROR "The common name(CN) extracted from the certificate is invalid"
- VEK key remains cached on node after NVE is deleted and removed from external key server
- Unable to modify EKM server-ca certificates due to error
- External Key Manager reports SSL PEER VALIDATION error
Recently added
(date created)- What is the config step in ONTAP when External Key Manager restore with same CA
- Volume creation fails in GCP as VEKs cannot be created for data SVM
- Newly created aggreagtes are not being encrypted after enabling OKM
- Does the server-CA certificate SwisscomRootCA1 need to be renewed manually?
- Is it required to install SSL certificates for disk encryption?
- Unable to modify EKM server-ca certificates due to error
- External Key Manager reports SSL PEER VALIDATION error
- Can SnapLock Enterprise mode snapshots be deleted before the retention period expires
- SVM Migrate will not preserve SVM Root volume if NAE and NAE aggr is present on dest
- Does NetApp support encryption
- EMS message : mgmtgwd.certificate.expiring for client certificate
- Enable encryption (NVE) on Load Sharing (LS) Mirror volumes
- How to protect FIPS or SED drives from authentication lock out while troubleshooting KMIP reachability issues
- How to determine what certificates are used by ONTAP
- ONTAP Truststore certificate BaltimoreCyberTrustRoot expiring May 2025