You must use aggregate-level encryption if you plan to perform inline or background aggregate-level deduplication. Aggregate-level deduplication is otherwise not supported by NVE. ONTAP automatically “pushes” an encryption key to the Utimaco ESKM server when you encrypt a volume.
Note: Plain text volumes are not supported in NAE aggregates.
Enable or disable aggregate-level encryption:
1. The following command enables aggregate-level encryption on aggr1:
|
›_ Console |
|---|
|
Creating a new aggregate and enabling aggregate-level encryption
2. Verify that the aggregate is enabled for encryption:
|
›_ Console |
|---|
|
Verifying encryption on aggregate