In case of a security emergency, you can instantly prevent access to data on disks using Storage Encryption, even if power is not available to the storage system or the external key server.
If... | Then... |
---|---|
Power is available to the storage system and you have time to gracefully take the storage system offline |
This leaves the storage system in a permanently disabled state with all data erased. To use the storage system again, you must set it up from the beginning. For more information, see the Data ONTAP Software Setup Guide for 7-Mode. |
Power is available to the storage system and you must shred the data immediately; time is critical |
The storage system panics which is expected due to the abrupt nature of the procedure. It leaves the storage system in a permanently disabled state with all data erased. To use the storage system again, you must set it up from the beginning. For more information, see the Data ONTAP Software Setup Guide for 7-Mode. |
Power is available to the external key server but not to the storage system |
|
Power is not available to the external key server or the storage system | Destroy the authentication item for the key server (for example, the smart card). If power to the systems is restored, the external key server cannot operate due to the missing authentication item. This prevents access to the disk encryption keys by the storage system, and therefore access to the data on the disks. |