Create an encrypted dataset in TrueNAS
Create at least one encrypted dataset for the TrueNAS / integration in this final stage, enabling TrueNAS to start using KMIP.
Datasets exist inside storage pools, so you must create one if a storage pool does not already exist. Refer to the following article on the TrueNAS Documentation Hub for setting up a storage pool: https://www.truenas.com/docs/core/gettingstarted/storingdata/
You can encrypt new datasets within an existing unencrypted storage pool without encrypting the entire pool. To encrypt a single dataset, complete the following steps:
Go to Storage > Pools, select the three vertical dots on the far right side of the menu for an existing dataset, and select [ Add Dataset ].
In the Encryption Options area, deselect Inherit and select Encryption.
Choose one of the following authentications: Key or Passphrase. Then select [ Submit ].
If you chose the Key authentication type for the new dataset, the ZFS key is generated on the and retrieved by TrueNAS as needed. If you chose the Passphrase option, KMIP creates the passphrase only if you attach TCG OPAL capable disks to the NAS being used.