跳转到主内容

在节点取消加入过程中、无法打开SED

  1. 最后更新
  2. 另存为PDF
Views:
3
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core<a>2009399580</a>
Last Updated:

适用场景

  • ONTAP 9
  • FAS
  • AFF
  • NetApp 存储加密( NSE )

问题描述

  • 无法从集群中取消节点加入

cluster1::> priv set advanced

cluster1::*> cluster remove-node -node node1

Error: command failed: Cannot remove node "node1" because its self-encrypting drives use authentication keys (AKs) that will not be available to the node after it leaves the cluster. Use the "storage encryption disk show" and "storage encryption disk modify" commands to set the FIPS and data AKs of devices owned by the node and the failover partner to the default manufacture secure ID (MSID), keyID 0x0

  • 尽管打开了SED (自加密驱动器)、但仍报告密钥缺失。

cluster1::*> storage encryption disk modify -fips-key-id 0x0 -disk 2.0.* 
cluster1::*> storage encryption disk modify -data-key-id 0x0 -disk 2.0.* 
cluster1::*> storage encryption disk show

Disk    Mode Data Key ID
-------- ---- -------------
2.0.0   open 0x0
2.0.1   miss -
2.0.2   open 0x0
2.0.3   miss -
2.0.4   open 0x0
2.0.5   miss -

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.