NetApp Community Update
This site will enter Read Only mode on July 23 as we prepare to move to a new platform. You will still be able to view content, but posting and replying will be temporarily disabled.
We're excited to launch our new Community experience on July 30 and more information will follow soon.
Stay connected during the transition - Join our Discord community today.

General Discussion

KMIP and ontap integration

スネジャ
2,104 Views

Hello,

 

I am looking for some help in regards to integrating ontap with External KMIP server for encryption.

 

I have setup the external KMIP server to store the encryption keys created by ontap.

The client certificate which needs to be installed on ontap, i have got that signed with the intermediate CA not the Root CA.

 

I know the procedure in case, the client certificate is signed by Root CA.

 

I don't know if the Intermediate CA can be used for authentication on ontap for KMIP

If anyone knows what is the procedure in case of using the Intermediate CA for Authenication please let me know.

 

Thanks & Regards

 

 

 

 

1 REPLY 1

AlexDawson
1,958 Views

Hi there!

 

You install the intermediate CA pubkey as you would any other certificate - using "security certificate install", as detailed at https://docs.netapp.com/ontap-9/topic/com.netapp.doc.dot-cm-cmpr-950/security__certificate__install.html

 

If you are converting or modifying a system already in production, I suggest you contact NetApp Support for guidance, but this is the general procedure for using chained trust certificates.

 

Hope this helps!

Public