由于外部密钥管理器、ANDU期间的备回被否决
适用场景
- ONTAP 9.8
- NetApp 卷加密 (NetApp Volume Encryption, NVE)
- ONTAP自动无中断升级
- 外部密钥服务器
问题描述
- 正在执行ONTAP自动无中断升级
- 由于配对节点上缺少密钥、向节点交还数据聚合失败
cf_giveback: gb.sfo.veto.kmgr.keysmissing:error]: Giveback of aggregate <aggregate> failed due to unavailability of volume encryption keys for the encrypted volumes of the aggregate on the partner node <partner_node>.
- 运行
security key-manager external restore -node <target_node> -key-server <key_server_IP>
失败、并显示错误:
Warning: Unable to list entries on node <node>. KMIP "get" command failed on external key server "<key_server_IP>". Cryptsoft error: "Response status: OPERATION _FAILED. Reason: PERMISSION_DENIED.