跳转到主内容

无法访问外部密钥管理器时、ONTAP 的行为如何?

Views:
5
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

适用场景

  • ONTAP 9
  • NetApp 卷加密 (NetApp Volume Encryption, NVE)
  • NetApp聚合加密(NAE)

问题解答

  • ONTAP启动时:
    • NVE系统:加密卷保持脱机状态
    • NSE系统:ONTAP将拒绝启动、请参见 ONTAP 加密文档
  • 创建密钥时:
    • 在创建新卷或重新设置现有卷的密钥时、不会创建此密钥。
  • 删除卷时:
    • 删除将失败、因为无法删除此密钥。
  • 运行以下命令时:

security key-manager query 命令:如果缓存已满、则会显示密钥ID

security key-manager restore 命令:命令将失败

security key-manager show -status 命令:命令将显示不可用

  • 如果将密钥存储在缓存中时存储中未发生任何更改、则不会产生任何影响(例如创建卷或删除卷)。

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.