ONTAP 9.14.1 commands

security key-manager external gcp rekey-internal

Rekey an internal key of the Vserver

Availability: This command is available to cluster and Vserver administrators at the advanced privilege level.


This command rekeys the internal Vserver key hierarchy by changing the SVM key encryption key (KEK). Upon successful completion of the command, all keys in the Vserver key hierarchy will be protected by the new top-level KEK.


-vserver <Vserver Name> - Vserver

This parameter specifies the Vserver for which ONTAP should rekey the SVM KEK.


The following command rekeys the SVM KEK for data Vserver v1.

cluster-1::> security key-manager external gcp rekey-internal -vserver v1
Top of Page