Skip to main content

Remove cluster peering encryption from an existing peer relationship

Contributors

By default, cluster peering encryption is enabled on all peer relationships created in ONTAP 9.6 or later. If you do not want to use encryption for cross-cluster peering communications, you can disable it.

Steps
  1. On the destination cluster, modify communications with the source cluster to discontinue use of cluster peering encryption :

    • To remove encryption, but maintain authentication enter:

      cluster peer modify _source_cluster_ -auth-status-admin use-authentication -encryption-protocol-proposed none
    • To remove encryption and authentication, enter:

      cluster peer modify _source_cluster_ -auth-status no-authentication
  2. When prompted enter a passphrase.

  3. On the source cluster, disable encryption for communication with the destination cluster:

    • To remove encryption, but maintain authentication enter:

      cluster peer modify _destination_cluster_ -auth-status-admin use-authentication -encryption-protocol-proposed none
    • To remove encryption and authentication, enter:

      cluster peer modify _destination_cluster_ -auth-status no-authentication
  4. When prompted, enter the same passphrase entered on the destination cluster.