Table of ContentsView in Frames

Setting the state of disks using Storage Encryption to end-of-life

If you want to render a disk permanently unusable and the data on it inaccessible, you can set the state of the disk to end-of-life by using the disk encrypt destroy command. This command only works on spare disks.

Steps

  1. Remove any data from the aggregate containing the disk.
  2. Migrate any data that needs to be preserved to a different aggregate.
  3. Destroy the aggregate.
  4. Access the nodeshell: system node run -node node_name
  5. Enter the following command: disk encrypt destroy disk_ID
  6. Exit the nodeshell and return to the clustershell: exit
  7. If the disk has a PSID printed on its label but you do not want the disk to be able to be reset to factory settings and returned to service at a later time, obliterate all instances of the PSID on the disk label (text or scannable code).
    Be sure to also destroy any copies, scans, or photographs of the disk label.

Result

The disk's encryption key is set to an unknown random value and the disk is irreversibly locked. The disk is now completely unusable and can be safely disposed of without risk of unauthorized data access.