When we implemented DAOS on one server, we had problems when NLO encryption was enabled. So we disabled the encrytion of NLO.After upgrading to 8.5.1 this issue does no longer occur.
What is the best practice to transfer the unencrypted NLO files to encrypted NLO files?
Would a compact -c do the job once the encryption has been enabled on the server ?
Subject: DAOS encryption of existing NLO’s
unfortunately there is no good way to “retro encrypt” NLO’s because once the NLO exist, new instances latch into the existing instance of the object. The decision to encrypt is made only when the first instance of an object (NLO) is created.
Technically , the only way to do this would be to uncompact everything OUT of DAOS (compact -c -daos off ), then run a Tell DAOSmgr prune 0 ( delete objects with no references ). Then compact -c daos on and new objects will be created with encryption (so, not a very good solution).
It would require an enhancement in order to encrypt existing NLO’s
Subject: Thank you
I’ve expected this answer. OK, no problem. As it is only a small server with 100 users, this can be done during a weekend.