Transition to external key management from onboard key management

Contributors

If you want to switch to external key management from onboard key management, you must delete the onboard key management configuration before you can enable external key management.

What you’ll need
Step
  1. Delete the onboard key management configuration for a cluster:

    For this ONTAP version…​

    Use this command…​

    ONTAP 9.6 and later

    security key-manager onboard disable -vserver SVM

    ONTAP 9.5 and earlier

    security key-manager delete-key-database

    For complete command syntax, see the man pages.

    The following ONTAP 9.6 command deletes the onboard key management configuration for cluster1:

    clusterl::> security key-manager onboard disable