You can enable data-in-transit encryption by editing the configuration parameters of a vSAN cluster.


  1. Navigate to an existing cluster.
  2. Click the Configure tab.
  3. Under vSAN, select Services and click the Data-In-Transit Encryption Edit button.
  4. Click to enable Data-In-Transit encryption, and select a rekey interval.
  5. Click Apply.


Encryption of data in transit is enabled on the vSAN cluster. vSAN encrypts all data moving across hosts and file service inter-host connections in the cluster.