Does NetApp support encrypted and non-encrypted disks on the same node?
Applies to
- NetApp Storage Encryption (NSE) FIPS certified drives
- Self-Encrypting Drives (SED)
- NVMe Self-Encrypting Drives (NVMe SED)
Answer
NetApp Storage Encryption
- NetApp Storage Encryption uses Self-Encrypting Disks (SED) that are FIPS certified.
- These disks can be found on the FIPS Matrix.
- In the Hardware Universe for Drives when searching by drive model the Encrypted column will show as Yes. Clicking on the word Yes will show the supported standards of FIPS 140-2 Level 2 and NSE.
- Drives of this type CAN NOT be mixed with drives that are not FIPS certified SEDs in the same node or HA pair.
NVMe Self-Encrypting Drives (NVMe SED)
- NVMe self-encrypting drives do not have FIPS 140-2 certification, however, these disks use AES 256-bit transparent disk encryption to protect data at rest.
- ONTAP 9.6 introduced support for NVMe SEDs for the AFF A800 and A320 platforms.
- In the Hardware Universe for Drives when searching by drive model the Encrypted column will show as Yes. Clicking on the word Yes will show the supported standards of AES-256.
- Drives of this type CAN be mixed with other drives that are not NVMe SEDs in the same node or HA pair.
Additional Information