security key-manager external remove-servers


Remove External Key Management Servers

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.


This command removes the key management servers at the given hosts and ports from the given Vserver’s external key manager’s list of key management servers. If any of the specified key management servers is the sole storage location for any key that is in use by Data ONTAP, then you are unable to remove the key server. This command is not supported when external key management is not enabled for the given Vserver.


-vserver <vserver name> - Vserver Name

Use this parameter to specify the Vserver on which the external key manager is to be removed.

-key-servers <Hostname and Port>,…​ - External Key Management Servers

Use this parameter to specify the list of key management servers that you want to remove from the external key manager.


The following example removes the key management server keyserver1.local, listening on the default port of 5696 and the key management server at IP, listening on port of 15696.

cluster-1::*> security key-manager external remove-servers -vserver cluster-1
 -key-servers keyserver1.local,