在 NVE 被删除并从外部密钥服务器移除后，VEK 密钥仍保留在节点上缓存

最后更新
另存为PDF

Views:: 8

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: core

Last Updated:

适用场景

ONTAP 9
外部密钥服务器
NetApp 卷加密 (NetApp Volume Encryption, NVE)

问题描述

NVE 卷已被删除，之后运行时“security key-manager key query -restored false “已删除的 NVE 卷的密钥 ID 仍缓存在节点上。

Cluster::> key-manager key query -restored false Node: cluster-01 Vserver: svm_cluster Key Manager: 10.225.89.34:5696 Key Manager Type: KMIP Key Tag Key Type Restored ------------------------------------ -------- -------- c9541486-4cc8-11ec-9221-00a0985b948b VEK false Key ID: 000000000000000002000000000005001b8ca4b682e533dfc5cfc5a77acb28c40000000000000000 Cluster::> vol show -key-id 000000000000000002000000000005001b8ca4b682e533dfc5cfc5a77acb28c40000000000000000 There are no entries matching your query.