由于密钥管理器的原因,在 andu 期间交还被否决
适用场景
- ONTAP 9.8
- NetApp 卷加密 (NetApp Volume Encryption, NVE)
- ONTAP 自动无中断升级
- 外部密钥服务器
问题描述
- 正在进行 ONTAP 自动无中断升级
- 由于配对节点上缺少密钥,将数据聚合交还给节点失败
cf_giveback: gb.sfo.veto.kmgr.keysmissing:error]: Giveback of aggregate <aggregate> failed due to unavailability of volume encryption keys for the encrypted volumes of the aggregate on the partner node <partner_node>.
- 运行
security key-manager external restore -node <target_node> -key-server <key_server_IP>
失败并显示错误:
Warning: Unable to list entries on node <node>. KMIP "get" command failed on external key server "<key_server_IP>". Cryptsoft error: "Response status: OPERATION _FAILED. Reason: PERMISSION_DENIED.